TACACS authentication ACE module with domain user

Unanswered Question
Jun 8th, 2009

Problem: Unable to get windows domain users authenticated thru the ACE module (Version A2(1.0)) towards the Cisco ACS 4.2 server.

I have successfully setup AAA against my Cisco ACS 4.2 server, it works fine authenticating local ACS users.

I've setup the custom tacacs variables so I'm getting the correct role for the contexts aswell.

But when I try to login using my domain user, eg. domain\user, im getting "login incorrect", I know the password is correct, hence its working at other Cisco devices with Tacacs. Also when looking into the passed authentications on the ACS, it says "passed", but the ACE tells "login incorrect"..

Im able to get my domain account authenticated if I dont specify the domain in front of the username, but then I have 2 different users on my ACS, I would like to use my domain\user only, hence its configured for a special group on the ACS.

Isn't possible to get windows domain users authenticated on the ACE module against Cisco ACS.. ??

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)


This Discussion