If you have access to the customer's Meraki organization, simply log in to Meraki dashboard, access the customer's organization, and go to Help - Cases.   The customer will be able to see the case that you filed along with any updates.   You can also use the phone numbers shown on the 'Get Help' page (in Meraki dashboard). ... View more

If you're trying to add a tag or modify the tag list, note that the inventory API does not include the current set of tags for each device.   If you update the device attributes ( /networks/[networkId]/devices/[serial]), you will overwrite any existing tags.  If that's okay with you, go for it.  Otherwise, you will need to do a bit more work.  Note that the tags parameter is a space-delimited set of tags.   Instead, you can call the inventory API to get the list of devices, then get the device attributes for each device, parse the tag list and make any necessary changes, and then update the device attributes.  It's really not that bad, but does require a little more code.   One more thing, Meraki's APIs limit how quickly you can call them.  If you're updating a lot of devices, make sure you throttle the requests.  I think the official limit is 5 per second, although if I configure any higher than 3 per second, I get occasional failures. ... View more

I'm seeing the same behavior in one organization, but not in a few others that I checked. ... View more

I'm guessing here, but I think the association and authentication steps are limited to a single radius configuration (you can have several radius servers).  MAC-based access control uses radius.  Splash page sign-on uses radius.  As a result, I don't think they can be used together.   If you're already using "Sign-on with (my radius server)" with a custom splash page and you need MAC-based access control, you should be able to validate the MAC address on the same back-end handling your splash page.   Oh well, it should be that easy, but it isn't.  Sign-on splash uses a different URL than click-through splash (see https://meraki.cisco.com/lib/pdf/meraki_whitepaper_captive_portal.pdf).  Sign-on splash doesn't appear to include the client MAC address in the URL.   But all hope is not lost.  I haven't tried this myself, but it should work...   After the user completes the sign-on process, the Meraki AP sends a radius request to your server to confirm the credentials.  This radius request SHOULD include the client MAC address.  If I remember correctly, it's in the calling station id and the value is ALL CAPS, separated by dashes, followed by a colon, and followed by the SSID.  Depending on your radius setup, you may be able to do the MAC filtering at this point. ... View more

I can't imagine that there's any way to capture the real wireless MAC address of a device probing with a locally administered MAC address until the device associates to the SSID.   The entire reason why some devices use random/locally administered MAC addresses when probing is to prevent device tracking by access points. ... View more

As far as I can tell, the API does not support assigning group policies by ssid.   I should point out that the documentation for setting the policy is incomplete (or inaccurate, depending on your point of view).  The valid values for devicePolicy are  whitelisted , blocked , normal , group.  Note that "group policy" is not a valid value.  You can see these values in Meraki's python library (https://github.com/meraki/dashboard-api-python/blob/master/meraki.py#L1327).   If a device has group policies set by ssid, you can retrieve the details from the API.  Here's what the response looks like:   { "mac": "aa:bb:cc:dd:ee:ff", "type": "Different policies by SSID", "ssids": { 0: { "type": "Normal", "name": "ssid0" }, 1: { "type": "Group policy", "group_number": 100, "name": "ssid1" }, 2: { "type": "Whitelisted", "name": "ssid2" }, 14: { "type": "Blocked", "name": "ssid14" } } } Unfortunately, I don't see any way with the current API to set the client policy to something like that. ... View more

Could you try to be more clear about what you're trying to do, the exact steps you're taking, and the exact results you see?   You can also contact Meraki support directly for assistance. ... View more

Try this:   Go to Network Wide > Clients   Open the drop-down next to the "Clients" title.  It should say 'All' by default.  Change the value to 'all clients with a policy'   Locate your client on the list and change the group policy. ... View more

I certainly see a change in the available fields with "Download As \ CSV".  However, I'm not limited to three fields.  In the new version of the switches page, the CSV feature appears to include columns based on the visible columns on the current page.  You can add fields using the wrench icon at the upper-right corner of the data table.   After adding all available fields, I still can't get all of the columns that you mention.   Some (not all) of this information is available through the Dashboard API.   ... View more

Login to Meraki Dashboard and select the network containing the access point you want to remove.   Wireless > Access points   Click the checkbox next to the access point and select 'Remove from network' from the Edit dropdown.   Organization > Inventory   Click the checkbox next to the access point and click 'Remove from network' from the Edit dropdown. ... View more

As luck would have it, I ran into this exact issue this morning submitting a case.   I received the same error about the CAPTCHA.  In my case though, the 'I'm not a robot' box appeared below the case description field and I was able to check the box.   It appears that Meraki is using Google's reCAPTCHA in an invisible mode.  I'm guessing that if you don't 'pass' the check when you submit the case, the checkbox is supposed to appear, so that you can assert your non-robot-ness. ... View more

In case anyone else is interested, here's something I noticed this morning while tinkering with a smaller network.   When I use a 'Wireless' configuration template rather than a 'Combined' configuration template, the behavior is different.  When you view the list of networks bound to a configuration template, there's a 'Local overrides' column and a button 'Revert to template settings'.  With a Combined configuration template, I don't get that column or button. ... View more

I should have been more clear.  I know how I want the networks configured using templates, tags, and so on.  I'm trying to clean up behind someone else.   This may require some support 'magic' to get corrected.  I thought I would see if there were any other solutions before going there.   The API docs for PUT  /networks/[networkId]/ssids/[number] contain an obscure note about the splashPage parameter being 'not supported for template children', but nothing similar on the other parameters that should be controlled by a template.   We'll see if Dave has anything to add :) ... View more