Why would this be expected behavior? What happens when multiple organizations are managed by a single entity like an MSSP? The MSSP has to go into every organization and disable/reenable their SSO instance for every client whenever an employee is removed? What if an individual flips this between reports? They can wipe the listed account's access? That doesn't sound like a compliant report. This can't be by design...this has to be a failure to address an obvious compliance reporting issue or how can Meraki PCI reports be relied upon to present accurate information? Even if there were a way to mark out individual users as removed and a timer during which they would no longer show on reports...anything. If I am missing something please let me know but saying it is expected behavior is very concerning.
... View more
