ACS integrated with Microsoft AD -- Internal error

Unanswered Question
Sep 17th, 2008

hi all:

we have ACS server used for TACACS server need to be integrated with MS AD.

After configuring the external DB in ACS, we are still not able to be authenticated by using AD account. and we found "Internal error" in the "failed attempts" log in the ACS server.

according to Cisco, Internal error is coming from Microsoft, did some come accorss the same problem before? and any solution?

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 2 (1 ratings)
Loading.
smalkeric Tue, 09/23/2008 - 09:38

If your usernames and passwords are on the external database like AD you can use a feature called RADIUS with expiry on concentrators, however any kind of password change feature is NOT supported when your NAS is a PIX firewall.

Below is the link for the RADIUS with expiry with Ciscosecure ACS for VPN users thorough 3000 series concentrators

http://www.cisco.com/en/US/products/hw/vpndevc/ps2284/products_configuration_example09186a00800946b9.shtml

Actions

This Discussion