Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
596
Views
0
Helpful
4
Replies

NAC Appliance and LDAP Lookup

Go to solution
jgary
Level 1
Level 1

‎10-21-2008 01:11 PM - edited ‎02-21-2020 03:03 AM

Hello,

I have two CAM in HA and two CAS in HA.

I configure the LDAP Lookup for create rule to role allocation.

In this configuration are only one windows server to make find the user properties.

There are one problem when this Windows servers is down. There are any configuration to mitigation when the server is not there.

Thank you all.

0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Daniel Laden
Level 4
Level 4
In response to jgary

‎11-08-2008 10:29 AM

The LDAP lookup server configs state it uses the LDAP Authentication Provider. The LDAP Authentication Provider says you can have multiple entries in the single field

LDAP

http://www.cisco.com/en/US/docs/security/nac/appliance/configuration_guide/413/cam/m_auth.html#wp1158614

You can add redundancy for LDAP Authentication servers by entering multiple LDAP URLs in the Server URL field separated by a space, for example:

ldap://ldap1.abc.com ldap://ldap2.abc.com ldap://ldap3.abc.com

View solution in original post

0 Helpful
4 Replies 4

Go to solution
flitcraft33
Level 1
Level 1

‎10-29-2008 03:16 PM

I believe that in version 4.5.0 you can add more than one LDAP look up server. Of course to get to 4.5.0 you must be running on the "appliance" hardware according to Cisco.

0 Helpful

Go to solution
jgary
Level 1
Level 1
In response to flitcraft33

‎10-29-2008 03:38 PM

Thank you,

I will review the 4.5 documentation.

0 Helpful

Go to solution
Daniel Laden
Level 4
Level 4
In response to jgary

‎11-08-2008 10:29 AM

The LDAP lookup server configs state it uses the LDAP Authentication Provider. The LDAP Authentication Provider says you can have multiple entries in the single field

LDAP

http://www.cisco.com/en/US/docs/security/nac/appliance/configuration_guide/413/cam/m_auth.html#wp1158614

You can add redundancy for LDAP Authentication servers by entering multiple LDAP URLs in the Server URL field separated by a space, for example:

ldap://ldap1.abc.com ldap://ldap2.abc.com ldap://ldap3.abc.com

0 Helpful

Go to solution
jgary
Level 1
Level 1
In response to Daniel Laden

‎11-10-2008 04:46 AM

Thank for you answer. For me will usefully this feature and resolve the problem.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card