Problem ACS 4.0 with group mapping

Unanswered Question
Feb 5th, 2008
User Badges:

A customer has an ACS 4.0.27 for Windows 2k3 SP2 and added a new domain. By mapping the domain with a group of Cisco Secure should authenticate with the user of that domain and access devices group Cisco Secure, but always authentic in the group ID 0 (Default).

I deleted the mapping and created again but it does not work.

I attach part of the CSAuth.log.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
jhillend Tue, 02/19/2008 - 10:03
User Badges:
  • Bronze, 100 points or more

Just a few things to check...

Does the new domain have a trust relationship with the local domain for ACS? This is required.

Is the same username used in both domains? The local domain will always use the local username. If this is the case, you may need to add the domain to the username, for example newdomain/username.


This Discussion