Normally I have 500 users a day! Not now under covid situation. But normally I have such numbers, most of them use their own laptop with wahtever configuration.  ... View more

My library has some free pc access. We give users: firefox, chrome and edge. Firefox can detect the captive portal and suggest, in a bar, to login - no ones watch it! - the other browser don't.   As you can immagine I give to users our web page, that is free. Only when user want to get out the walld garden they should authenticate themselves. Users can't understand such "trick": using http://www.bing.com rather than https://www.bing.com. They normaly use google as internet. That's it! And google gives back only https link. And nothing works. And user call us that nothing works.   That is very annoying! ... View more

Ok, reading carefully the documentationthis self-kill API can be used only on click-through splash. Not radius. Solved with a logon script that changes mac address in the right way (shell script, not windows tool) that force the user to login. is not clean but works. Many thanks to all. Regards ... View more

Many thanks ... I've got every information I need. The problem seems to be my raiud auth method because trying to kill a user by mac address I got this:   the simple user status:   curl -L -H "X-Cisco-Meraki-API-Key: my-key" -H "Content-Type: application/json" -X GET "https://api.meraki.com/api/v0/networks/my-network-id/clients/08:71:90:30:xx:yy"   answer: {"id":"kxxxxxx","mac":"08:71:90:30:xx:xx","ip":"10.89.54.xx","ip6":"","description":"DESKTOP-XXXXX","firstSeen":1578396644,"lastSeen":1578569384,"manufacturer":"Intel","os":"Windows 10","user":"user-id","vlan":"","ssid":"my-ssid","wirelessCapabilities":"802.11ac - 2.4 and 5 GHz","smInstalled":false,"recentDeviceMac":"e0:cb:bc:8b:4a:2f","clientVpnConnections":null,"lldp":null,"cdp":null,"status":"Offline"} then the splash auth:   curl -L -H "X-Cisco-Meraki-API-Key: my-key" -H "Content-Type: application/json" -X GET "https://api.meraki.com/api/v0/networks/my_network-id/clients/08:71:90:30:xx:yy/splashAuthorizationStatus"   answer:   {"ssids":{}}   No ssid? Why? So I ask API wht id has my-ssid and I got "0" and I am connected to it, but then, when I try to kill my self I get:   curl -L -H "X-Cisco-Meraki-API-Key: my_key" -H "Content-Type: application/json" --data-raw "{\"ssids\": { \"0\": {\"isAuthorized\": false}}}" -X PUT "https://api.meraki.com/api/v0/networks/my_network_id/clients/08:71:90:30:xx:yy/splashAuthorizationStatus"   answer:   {"errors":["SSIDs 0 do not have Click-through splash enabled. No changes were made."]}   What does it means? "de-auth" works only on click-through splash? I have a radius splash, in fact, if I try to de-auth a user from dashboard going in to Wireless/splash logins and taking a user and then click on de-auth button the user can still use the network! I can't understand ... View more

YES! That is what I need: the user will suicide himself calling an url. I saw the API but I can't understand where to find data: - [networkId] - is the ssid? or my network? where to find it? I think this should be fixed and i can hard plug into my logoff script; - [clientId] - watching the html in the deautorize dashboard page I found a cliendId like that: "radius_736338539075241100". Where to find it on user side? ... View more

No coockies problem because i clean all the machine on logout forcing a reboot/restore. I agree with the logoff page consideration. Users don't mind and close. I need to find a way to disconnect user/device at logoff but meraki does not supply an url os something to call to force user/device disconnect on client side. That's crazy because you can't use such system on public workstation. We have some room that are not wired because we are an ancent library so we nedd to pass trough wifi anyway. ... View more

I clean all user data with a restore app, Everything is perfectly cleaned. No coockies problem. ... View more

It seems is not possible. I need to setup some public workstation in my library where many people can turn on.   I wrote to meraki support and they said meraki does not provide a way to logoff the user excluding forcing the logoff from administrator dashboard. That's crazy, I think.   I use my radius server authentication methond passing trough the meraki splash screen.   I tried to change the workstation mac address but seems does not works and for the splash screen timeout time there's no way to use the workstation with different user. When the first user login the couple user/device rest logged. ... View more

I forgot to say that we use our own radius server to authenticate usera and, at the moment we use the meraki standard spash page. I also foud this whitepaper that describe something interesting at page 10 and 11 but something is not clear to me (urls and auth code) https://meraki.cisco.com/lib/pdf/meraki_whitepaper_captive_portal.pdf ... View more