we just joined our ACS 5.1 to our Active Directory 2003, the system seems correctly joined on the ACS we have as connectivity status: joined and if we try it with the test button we get "connection succeded", on the AD tool we notice that an computer account for our ACS have been created.
We wanted to created the Directory Group but the browsing tool is empty and any query does not give any output.
The ACS is joined but we're not able to browse the Active Directory.
Any suggestions what could be the problem?
This is an on-going issue due to below mentioned defect.
CSCtf39158 -Can't retrieve AD groups in single forest with multiple trees scenarios
You need to apply Patch 3 to get this fixed
Download from: CCO / Support / Download Software http://www.cisco.com/public/sw-center/index.shtml
Select: Security / Identity Management / Cisco Secure Access Control System / Cisco Secure Access Control System 5.1 / 184.108.40.206
##Steps to create repository##
Go to the CLI mode of this ACS
Create a repository (it's basically defining FTP server)
AAA/admin(config)# repository FTP ---> (could be any name)
AAA/admin(config-Repository)# url ftp://
AAA/admin(config-Repository)# user password plain
Steps to Install the ACS 5.1 patch:
Issue the following acs patch command in the EXEC mode to install the ACS patch:
acs patch install patch-name.tar.gpg repository repository-name
Do rate helpful posts-