Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
639
Views
0
Helpful
3
Replies

Can't browse the Active Directory from ACS 5.1

Go to solution
acleri
Level 1
Level 1

‎06-15-2010 06:22 AM - edited ‎03-10-2019 05:11 PM

Hi,

we just joined our ACS 5.1 to our Active Directory 2003, the system seems correctly joined on the ACS we have as connectivity status: joined and if we try it with the test button we get "connection succeded", on the AD tool we notice that an computer account for our ACS have been created.

We wanted to created the Directory Group but the browsing tool is empty and any query does not give any output.

The ACS is joined but we're not able to browse the Active Directory.

Any suggestions what could be the problem?

Thank you.

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Jatin Katyal
Cisco Employee
Cisco Employee

‎06-15-2010 06:23 PM

This is an on-going issue due to below mentioned defect.


CSCtf39158 -Can't retrieve AD groups in single forest with multiple trees scenarios

You need to apply Patch 3 to get this fixed


filename: 5-1-0-44-3

Download from: CCO / Support / Download Software  http://www.cisco.com/public/sw-center/index.shtml

Select: Security / Identity Management / Cisco Secure Access Control  System / Cisco Secure Access Control System 5.1 / 5.1.0.44



##Steps to create repository##

Go to the CLI mode of this ACS

Create a repository (it's basically defining FTP server)
AAA/admin(config)# repository FTP ---> (could be any name)
AAA/admin(config-Repository)# url ftp://
AAA/admin(config-Repository)# user password plain

===============================
Steps to Install the ACS 5.1 patch:
===============================

Issue the following acs patch command in the EXEC mode to install the ACS patch:

acs patch install patch-name.tar.gpg repository repository-name

Rgds.

JK


Do rate helpful posts-

~Jatin

View solution in original post

0 Helpful
3 Replies 3

Go to solution
Jatin Katyal
Cisco Employee
Cisco Employee

‎06-15-2010 06:23 PM

This is an on-going issue due to below mentioned defect.


CSCtf39158 -Can't retrieve AD groups in single forest with multiple trees scenarios

You need to apply Patch 3 to get this fixed


filename: 5-1-0-44-3

Download from: CCO / Support / Download Software  http://www.cisco.com/public/sw-center/index.shtml

Select: Security / Identity Management / Cisco Secure Access Control  System / Cisco Secure Access Control System 5.1 / 5.1.0.44



##Steps to create repository##

Go to the CLI mode of this ACS

Create a repository (it's basically defining FTP server)
AAA/admin(config)# repository FTP ---> (could be any name)
AAA/admin(config-Repository)# url ftp://
AAA/admin(config-Repository)# user password plain

===============================
Steps to Install the ACS 5.1 patch:
===============================

Issue the following acs patch command in the EXEC mode to install the ACS patch:

acs patch install patch-name.tar.gpg repository repository-name

Rgds.

JK


Do rate helpful posts-

~Jatin
0 Helpful

Go to solution
acleri
Level 1
Level 1
In response to Jatin Katyal

‎06-17-2010 05:37 AM

Thank you JK. Problem solved.

For future use Is this list of bug available on internet?

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents