I am trying to set up an external Active Directory database connection with Cisco ACS. I have a large forest and 3 tier domains within. I am planning to set up an external database via Generic LDAP option. The reason for doing it this way as i cannot set it up via windows user database option, more precisely I cannot join my Cisco ACS server into domain. My problem is that i have various OUs which contain my users and it will be too complicated to set up a separate LDAP connection for every single OU within my Forest.
Is there anyway of connecting to AD at higher level without pointing to every Base dn where users are?