06-09-2009 06:57 AM - edited 02-21-2020 03:30 AM
can i run ADSSO on cisco NAC with windows AD 2008?
06-09-2009 02:14 PM
Yes. We do. Using version 4.5.
There is a catch, you will find you're going to need use a "single active directory server" instead of "domain" option.
07-05-2011 11:56 PM
Hi,
I am trying to run ADSSO with windows 2008, NAC version is 4.8.I followed the document but still ADSSO service is not starting. Checked the reachability and done other troubleshooting. Could not find any error.
What could be wrong?
Find the logs of AD KTPass run output below.
C:\Users\Administrator>ktpass -princ testnac/wapt.waptsolution.com@WAPTSOLUTION.COM -mapuser testnac
-pass @lt12345 -out c:\testnac.keytab -ptype KRB5_NT_PRINCIPAL +DesOnly
Targeting domain controller: wapt.waptsolution.com
Using legacy password setting method
Successfully mapped testnac/wapt.waptsolution.com to testnac.
Key created.
Output keytab to c:\testnac.keytab:
Keytab version: 0x502
keysize 73 testnac/wapt.waptsolution.com@WAPTSOLUTION.COM ptype 1 (KRB5_NT_PRINCIPAL) vno 3 etype 0x
3 (DES-CBC-MD5) keylength 8 (0x3e80d310a7f1ea7f)
Account testnac has been set for DES-only encryption.
C:\Users\Administrator>ktpass -princ casuser/wapt.waptsolution.com@WAPTSOLUTION.COM -mapuser casuser
-pass @lt12345 -out c:\casuser.keytab -ptype KRB5_NT_PRINCIPAL +DesOnly
Targeting domain controller: wapt.waptsolution.com
Using legacy password setting method
Successfully mapped casuser/wapt.waptsolution.com to casuser.
Key created.
Output keytab to c:\casuser.keytab:
Keytab version: 0x502
keysize 73 casuser/wapt.waptsolution.com@WAPTSOLUTION.COM ptype 1 (KRB5_NT_PRINCIPAL) vno 3 etype 0x
3 (DES-CBC-MD5) keylength 8 (0xbc1c5d5ea885e5e0)
Account casuser has been set for DES-only encryption.
C:\Users\Administrator>
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide