Hi @IT-itfinities!    Do you have context on what specific issues you are trying to avoid, or are you looking for general best practices? ... View more

Hi @QuanjaWanja!  Our Engineering teams are currently scoping an issue which may be related to video exporting. If you're seeing that message (possibly alongside the export being marked as completed) I would suggest to open a support case so the team can log your issue against the report and give you timely updates on the progress of any fixes that are applied.  ... View more

I see that we acknowledge those responses (such as a 400) evident by our logging of that response against the specific webhook on our systems, and I don't believe retries are sent for those as a response has already been received. ... View more

Hi @IronBones!  Depending on how much data you need, or the method of consuming said data, it can be as simple as monitoring inbound dashboard e-mail alerts and reacting to any expired licenses prior to the grace period.    On the other hand, you could run a script that makes the API call getOrganizationLicenses and pull each expirationDate against each licenseKey, comparing them against the current date and alerting on proximity to that expiration date, or parsing the output to a CSV file for review elsewhere. There's a useful three-part guide on the community forums here that details how to use the API with Python. ... View more

Hi @daniel_abbatt!  When the dashboard sends a webhook, it expects a HTTP 200 response. Only if it does not get a response will it then re-attempt delivery, up to a total of 10 times, with a back-off timer that doubles in value on each failure.  ... View more

Hi @marcus_kisi! You should be able to remove any newline characters as I believe they are not necessary for the functionality of the string, just for readability. Try entering the text as one long string with any /n or other newlines removed, such as "-----BEGIN CERTIFICATE-----ECgwDQVdTM...-----END CERTIFICATE-----"    Let me know of the outcome too! ... View more

It seems that the endpoint getNetworkFirmwareUpgrades lists the "upgradeWindow" and "participateInNextBetaRelease" options but none specifically for the options of the upgrade schedule. It would be best to leave a feature request for this, so the API teams can look at the possibility of adding it as a field within that call.  ... View more

Hi @Vmadathil!    Can you confirm the specific call that you're actioning within the script, is it updateNetworkWirelessSsidSplashSettings?    If that is the case, then it seems the PUT does not accept that as an input value (evidenced via the Request body > Schema Definition in the developer documentation) despite it being provided as an output in the Responses > Example Body section. For this, we would suggest to make a feature request so it gets through to the relevant product team for review in their development process.    ... View more

Hi @jkkarkar! Before reporting a device as a rogue, there is additional logic check that the dashboard uses to determine if the BSSID is broadcast from an AP in the same dashboard network (i.e. a legitimate broadcast from other Meraki APs on the same SSID within the same dashboard network). Every AP maintains a list of all of other Meraki APs it knows about in the network, and the rogue check involves a check against this list prior to containment. The caveat is if APs are in a different network of the same dashboard organization, with changes in outcome dependent on the containment method in use.   The difference between rogue and spoof is important to note, as a spoof attempting to impersonate your SSIDs cannot easily be blocked via Air Marshal containment methods, due to the containment affecting the legitimate APs also.   ... View more

Hi @cmr!  Just want to confirm, do you have a Support case logged for this issue already? I ask, as we want to ensure it gets recorded under the correct bug reporting process, and Engineering will want to reference the example network also (should it not be present on other dashboard organizations also). ... View more

Hi @Rida1!  I can confirm the MV can connect wirelessly when powered by a PoE injector - my MV63 and MV93 at home are connected via wireless profile only, and are powered via Cisco AIR-PWRINJ6 PoE injectors.    You may want to call in to support for further advice on the specific steps in your scenario, as the camera needs to report a stable configuration for that 30 minute period to be able to retain the wireless profile configuration thereafter.  ... View more

Hi @Dunky,    Thanks for clarifying!  I see that an issue which matches your description was forwarded through the Support Product Specialist team on the 25th September; while I can't see the exact status of work performed now, it shows as assigned to an Engineer and is in the to-do state. It's likely that we will only be able to resolve that issue through the next update on the report attached to your support case, due to the fact that it's been forwarded as an actionable bug report by the team. ... View more

Hi @KingArthur!   There definitely seems to be a valid use case for these types of lighting systems, especially as they can benefit from all the positive aspects provided by PoE power delivery. There is an interesting post on the Cisco site which discusses these points too: https://www.cisco.com/c/en/us/solutions/enterprise-networks/what-is-poe-lighting.html ... View more

Hi @Dunky,    This is likely due to the gradual rollout of the new Magnetic design preventing a return to the older theme. There was previously the option to opt-in to it as an early access feature, but this looks to have been removed as we transition to Magnetic design as the default theme.    Please let me know if Support has provided any further context on this too! ... View more

On the delay, it would also be dependent on the method of streaming (direct LAN versus cloud-proxy) that is in use, as HLS cloud-proxy streaming via the browser is acknowledged to have delays similar to those stated.     Alternatively, a review of external RTSP streaming could be good to test, to see if that makes any difference in the viewing experience.  ... View more

I use VLC too, it can take a while to initiate the stream sometimes.  Once you've opened the stream (in my case, opening rtsp://192.168.0.135:9000/live via Media > Open Network Stream > enter a network URL) you can then create desktop shortcuts to each stream via Media > Save Playlist to File for easier access:   For Fisheye camera streams, you may want to dewarp the stream with a post-processing method before streaming it to VLC - the method is detailed in this community post, except they are using FFPLAY there instead of VLC. ... View more

Whilst it isn't user-serviceable, it's also not an IP rated camera; as guarantees aren't provided for preventing ingress it likely wouldn't hit the criteria for replacement under an RMA. I'd agree with Ryan on dislodging any debris inside with some gentle percussive maintenance. ... View more

I would suggest opening a case too for Support to do a cursory check, just in case there are any back-end messages or warnings correlating with this output. Feel free to mention the community post in the description of that case also! ... View more

Hi RaphaelL!    I can't seem to find any details on this event type under our release notes or the firmware changelog - I'll raise this with the relevant team internally for further advice.    Let me know if you have any further questions on this in the meantime! ... View more

Translated:    Hello,   I work for a School District. Each of our schools has at least two wiring closets (mdf & idf). The primary closet (MDF) is connected directly to a Cisco Catalyst 9500 for internet access, with the 9500 being the root switch for STP. Each closet has several Meraki ms225, connected to each other through a stack of switches. At the same time, each closet connects to the MDF and the latter to the 9500. On the 9500 port, towards the MDF, I have "Root Guard" configured to prevent one of the Meraki from becoming a root bridge. What would be the port configurations for each of the connections from each idf to the mdf? I want to know if Root Guard also applies or if I have to declare it Loop Guard?   Thank you,   --- Response: Hola Domntr05! Hay un documento bastante completo que detalla el caso de uso para cada una de las opciones de protección STP, vinculado aquí: https://documentation.meraki.com/MS/Port_and_VLAN_Configuration/Configuring_Spanning_Tree_on_Meraki_Switches_(MS)#Configuring_STP_Guard_on_a_Switch_Port Como breve explicación: Root guard generalmente se aplica a los puertos que se encuentran frente a los conmutadores descendentes que están más cerca de los dispositivos cliente en la topología de la red. Evita que esos conmutadores inferiores se conviertan en la raíz STP al evitar que pasen mensajes BPDU superiores. Loop Guard se utiliza para evitar que se produzcan bucles en la topología STP, cuando parte de un enlace falla y se vuelve unidireccional. Esto se aplica más comúnmente para conexiones de fibra óptica, ya que un cable se usa para transmitir datos y el otro cable para recibir datos. En su caso, si no tiene cables de fibra óptica que conecten el IDF y el MDF, no necesitará configurar ninguna función de protección en los conmutadores descendentes. Si está utilizando cables de fibra para conectar el MDF y el IDF, entonces debe agregar Loop Guard a los puertos que se conectan desde el MS and upstream. --- Translated response:  Hi Domntr05! There is a quite comprehensive document that details the use-case for each of the STP guard options, linked here: https://documentation.meraki.com/MS/Port_and_VLAN_Configuration/Configuring_Spanning_Tree_on_Meraki_Switches_(MS)#Configuring_STP_Guard_on_a_Switch_Port As a short explanation: Root guard is usually applied to ports that face switches downstream who are closer to the client devices in the network topology. It stops those lower down switches from becoming the STP root by preventing them from passing any superior BPDU messages onwards. Loop Guard is used to stop loops from occurring in the STP topology, when part of a link fails and becomes unidirectional. This is more commonly applied for fiber optic connections, as one cable is used to transmit data and one cable is used to receive data. In your case, if you do not have fiber optic cables connecting the IDF and MDF, then you would not need to configure any guard functionality on the downstream switches. If you are using fiber cables to connect the MDF and IDF, then you should add Loop guard to the ports which connect from the MS to the upstream. ... View more

Hi shan_k!   I would recommend starting off by validating the scanning API calls themselves are working first, before troubleshooting their integration via Meraki Sandbox.   The validation can be performed with any HTTP server configured to receive JSON objects which returns the organization-specific validator as detailed in the introduction guide.   Also important to note are the differences between the V2 and V3 versions of the Scanning API, which can be found in this KB article.   Let me know if you have any further questions on this too! ... View more

Hi Schweb!   I'm looking at specifically the error "no installation source found" received when trying to manually push apps to those devices.    Based on your screenshot showing the update mode as high priority, it seems the data is hosted in Asia-Pacific.   If you go to the client device, click on "missing" under the "Apps" section, and click on the specific app name, does it show an App source whose region differs from the device's physical location itself? I'm thinking there could be an issue trying to fetch it from a certain store's region it would not originally reach to, which results in a response that there's no source to install from.    Please let me know if you can modify that field, and if it changes the outcome or results in a different error. ... View more