06-27-2008 06:23 AM - edited 03-10-2019 03:56 PM
I have windows 2003 AD and trying to setup ACS authentication with Generic Ldap.
I fill these fields in ACS 4.1 as below
User directory subtree cn=users,dc=mydomain,dc=local
Group directory subtree cn=users,dc=mydomain,dc=local
Userobjecttype uid
Userobjectclass Person
Groupobjecttype cn
Groupobjectclass GoupOfUniqueNames
Group attribute name UniqueMember
Admin dn cn=myname,cn=users,dc=mydomain,dc=local
A authentication failure show up with âexternal user not foundâ when I try to log on to a device.Please help to fill with the exact syntax for the above fields. All examples on the web are base on Novell LDAP
Thanks in advance
Vincent
07-03-2008 05:32 AM
ACS forwards the username and password to an LDAP database by using a Transmission Control Protocol (TCP) connection on a port that you specify. The LDAP database passes or fails the authentication request from ACS. When receiving the response from the LDAP database, ACS instructs the requesting AAA client to grant or deny the user access, depending on the response from the LDAP server.
Refer the following url for more information on Generic LDAP AUthentiication on ACS 4.1:
07-03-2008 06:07 AM
My question is what is the default attribute name from windows directory server for UserObjectType and UserObjectClass
Thks
07-09-2008 07:54 AM
Userobjecttype: cn
Userobjectclass: user
Regards
Andy
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide