I have an ACS 3.3(2)b2 what use AD as an external DB. I experianced, that dynamic users created after successful authentication from the AD, and these users don't purge themself from the ACS internal DB. I did a test environment, and the same thing happened. I upgraded the ACS to 4.0, and the same thing happened.
I find a mention in the ACS4.0 user guide, what says the following:
"Users that are dynamically mapped will keep on being dynamically mapped even when their group
mapping settings are modified to a group which is set to Disable caching of dynamically mapped users."
So my question is, where can I disable caching of dynamically mapped users?
Thanks a lot for the answers!
This is a feature that is added on ACS 4.2 see the release notes below:
Option of disabling caching of dynamic users-Administrators can determine whether they want to disable the creation of dynamic users while using an external database for authentication. Minimal performance disruption occurs when disabling caching of dynamic users.