TACACS+ on ACS 5.1 and LDAP

Unanswered Question
Jan 15th, 2010

Hey Guys,

I've set up a ACS 5.1 Server an want to use it with our LDAP System. Therefor, I'm trying to login to a Cisco 1841 by using my LDAP Account, but it dosent work. The ACS seems not to know that it should use LDAP, because I get:

"22056 Subject not found in applicable identity stores"

LDAP is configured as Identitiy Store, the bind test works successfully and I created a sequence, where LDAP is at first position. What goes wron?? (TATACS for loal ACS Users works)

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
Kent Heide Sat, 01/16/2010 - 02:18

I had problems with this on 5.0, but haven't tried on 5.1. I will check it now and post back.

dcmgash Sat, 01/16/2010 - 22:09

Hi Haiko,

Did you select the store in the Identity Policy for the service?

(Access Policies/Access Services//Identity

By default the "Internal Users" store is set, you can configure it to go either to your LDAP store directly, or to the identity Sequence you have created.

Actions

This Discussion

Related Content