-
Notifications
You must be signed in to change notification settings - Fork 3k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Meraki Rest API information is out of date and failing to connect #11248
Comments
Hi @giveen, Thanks for flagging this issue, we will investigate this issue and get back to you with some updates. Thanks! |
Hi @giveen, Could you please share the screenshot of the error message when you're getting after clicking on connect. Thanks! |
Hi @giveen, After analysis of existing code, we made changes into the REST API authorization and making it to get updated as per Cisco Doc. The PR has been raised with changes and currently it is in review state.
The custom deployment steps are mentioned into below file : Many Thanks! |
Wow you guys are faster than me. I'll test the deployment you sent me and get back to you guys, but here is the rest of the details requested. Here was my test script
Returned:
Considering the new API, this was my script
Result:
|
|
Hey @giveen, Today I have check with above scripts Old and New one to check the response for the Org Name and Org Id, and received the successfully response for both of them, there no issue currently having with the old API. And from our end we can be able to connect the existing connector without any fail: Let's check with your credentials to our updated connector, I see your getting the deployment error is may due to while deployment of template you did not enter the correct values, so please add below values and re-deploy the template - |
I was able to deploy the template with no issues after adding in my Workspace-location, and Workspace name. However, after putting in my Org ID and API key from the Data Connectors page, same result of 404. |
If you look at my test script, you will see that Org-ID is no longer needed. When just inputting my API key, Cisco new which Org I belonged too. |
Hi @giveen, Thanks for your response. Did you check the same for cisco end for 404 error? if any permissions or settings required and it should be disable currently? |
Good morning, I will email you from my work email and will reference this . |
Hi @giveen, I see your mail, in that the Workspace ID and sub key has been shared, actually to access it from backend we don't have required permission. Thanks! |
I have confirmed the org id matches my records and go ahead and send me a teams invite. |
Hi @giveen, Due to conflict in Time, let us check and match the meeting availability which suits for both the Time zones:
Custom Deployment - CustomDeploymentSteps.docx The previous deployment may have not overwrite the data connector and maybe due to that reason the 404 same issue occurred. Please follow the above steps and let us know your response, so if required we will forward this issue to our concern team to address the issue. Thanks! |
@v-sudkharat I'm curious if the reason why maybe its failing is because CiscoMerakiIDS logs dont exist on my end? I'm reaching out to my network engineers to ask if we have IDS on our Meraki XR |
@giveen, Sure please. Note: If not, then the new deployed template will not work as it does not overwrite the existing connector, So if not done then please check with following that one and test. OR you can also deploy the shared template in a new workspace where there is not already cisco Meraki solution has been deployed. Thanks! |
@v-sudkharat yes, I made sure that it was gone from Data Connectors before adding it. I had to go into the resource group and delete it manually since doing it from within Sentinel itself gave an delete error. |
@v-sudkharat I've confirmed with our Network team that our Meraki XRs do have NIDS |
Running into the same problem as you are facing here. Just wondering, would this have anything to do with permissions on the account that has generated the API key? Interested to know if this is down to permissions to why data can't be pulled back. Could you confirm what you have set on yours please @v-sudkharat |
Hi @giveen / @sh4d0wl0ck, Could you please open an azure support case, so this issue can be check by our concern data collection team and if required take a call with you. |
@giveen, Could you please share the ticket id with us to follow up on it. Thanks! |
Hi @giveen, Gentle Reminder: We are waiting for your response on this issue. If you still need to keep this issue active, please respond to it in the next 2 days. If we don't receive a response by 13-11-2024 date, we will be closing this issue. |
Hi, so I dont think I have the ability to put in support tickets for Azure,
per my talk with our system operations guy. Seems like we havent paid for
that support.
…On Mon, Nov 11, 2024 at 4:46 AM v-sudkharat ***@***.***> wrote:
Hi @giveen <https://github.com/giveen>, Gentle Reminder: We are waiting
for your response on this issue. If you still need to keep this issue
active, please respond to it in the next 2 days. If we don't receive a
response by 13-11-2024 date, we will be closing this issue.
Thanks!
—
Reply to this email directly, view it on GitHub
<#11248 (comment)>,
or unsubscribe
<https://github.com/notifications/unsubscribe-auth/AAJAKC5KUASYEML5UVQSJD32ACKJTAVCNFSM6AAAAABPVF7OF2VHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDINRXHE3TSMRYGE>
.
You are receiving this because you were mentioned.Message ID:
***@***.***>
|
@giveen, Noted. let us check with our team if have any alternates. Thanks! |
@giveen,
B. For API Key - NOTE: The ORG ID are correctly mapped to API KEY, and also please check for the If multiple ORG have into the cisco side. Thanks! |
@giveen / @sh4d0wl0ck , Did you get a change to check on above comment. Thanks! |
Yes I did. I'm 100% certain I have the correct org ID
…On Thu, Nov 21, 2024, 2:43 AM v-sudkharat ***@***.***> wrote:
@giveen <https://github.com/giveen> / @sh4d0wl0ck
<https://github.com/sh4d0wl0ck> , Did you get a change to check on above
comment. Thanks!
—
Reply to this email directly, view it on GitHub
<#11248 (comment)>,
or unsubscribe
<https://github.com/notifications/unsubscribe-auth/AAJAKC4BNMH57AN3QMPPPL32BWTKVAVCNFSM6AAAAABPVF7OF2VHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDIOJQGU4DQOBXG4>
.
You are receiving this because you were mentioned.Message ID:
***@***.***>
|
@giveen, Noted |
@v-sudkharat and I were able to determine that it was a permissions on the Meraki side. He isnt sure what permissions are needed, I'm going to work with my network engineer and see if I can either determine what permissions are needed or if they can generate an API key for me that will work from their higher level. |
@giveen, Ok. Please let us know once it gets done. Thanks! |
@giveen, Any update for us? |
I spoke to my network engineer and he needs to research what permissions are needed for the API key and that not going to happen till after the new year, so I have a service request ticket in with him. So now I'm at the mercy of their schedule. |
Describe the bug
The Meraki Rest API is using an out of date authorization behavior
https://github.com/Azure/Azure-Sentinel/tree/master/Solutions/Cisco%20Meraki%20Events%20via%20REST%20API/Data%20Connectors
https://developer.cisco.com/meraki/api-v1/authorization/#obtaining-your-meraki-api-key
"Next, check that your API call has the correct header with the following (and not v0's X-Cisco-Meraki-API-Key):"
https://github.com/Azure/Azure-Sentinel/blob/master/Solutions/Cisco%20Meraki%20Events%20via%20REST%20API/Data%20Connectors/CiscoMerakiMultiRule_ccp/dataConnectorPoller.json
Line 17
"ApiKeyName": "X-Cisco-Meraki-API-Key"
The text was updated successfully, but these errors were encountered: