Cached Users in ACS 4.1

Unanswered Question
Mar 5th, 2007
User Badges:


How long Cached Users(Users whose accounts were automatically added to the Cisco Secure ACS database when Cisco Secure ACS successfully authenticated them using the Unknown User Policy) remains in ACS if the user is inactive? I have noticed in my case some of the users accounts will recreated?

Is there is any way to hardcode all my cached accounts to ACS permanently?

Thanks in Advance


  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 4.3 (3 ratings)

"Is there is any way to hardcode all my cached accounts to ACS permanently?"

No, thats not how it works. A cached account is created from an external authentication attempt or rule is met. Thats entirely different from a static account where you enter in a user name and password on the local system. You can create those accounts locally, but then they transition from a chaced to a static account.

darpotter Tue, 03/06/2007 - 04:12
User Badges:
  • Silver, 250 points or more

There is... but you will have to enter them into the ACS database manually, or via csutil import or RDBMS Sync.

Basically there are two types of external users - those added manually (ie above) or those added automagically via the unknown user policy.

Its probably possible to dump the exsiting db vi csutil, edit the accounts to unset the auto-created flag then re-import. Might be able to help out here if you needed it.


at Wed, 03/07/2007 - 06:31
User Badges:


can i do this also with the acs solution engine ?

thank you


darpotter Wed, 03/07/2007 - 07:13
User Badges:
  • Silver, 250 points or more

In part... you can use rdbms sync to add users with external password types.

You cant use csutil.


This Discussion