I have the following configuration:
Cisco ACS 4.1 is running on the Microsoft
Active Directory Server (all in the same box).
Ip address of this box is 192.168.1.1/24.
I have RSA SecurID Server running on
another box (192.168.1.2/24).
I tried to integrate Cisco ACS 4.1 with
Microsoft AD server. I can log into
cisco devices with account(s) I created
on the AD server.
what i would like to do is that whenever
I reset the password for user(s) on the
AD server, I want the user(s) to have
the ability to change the password of
the account on the cisco device, like
[[email protected] root]# telnet 192.168.0.5
Connected to 192.168.0.5 (192.168.0.5).
Escape character is '^]'.
User Access Verification
Do you want to enter your own pin? (y or n) [n]
Enter your new Numerical PIN, containing 4 to 8 digits
"x" to cancel the new PIN procedure:
The above example is for ACS 4.1 and RSA SecurID
integration. I would like to do the same thing between
Cisco ACS 4.1 an Microsoft AD Server (running
on Windows 2003 Enterprise Server with Service
Pack 2). By the way, in ACS, I enable for ms-chap
both version 1 and version 2 and it still does not
Anyone know how to fix this? Thanks.