Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1370
Views
0
Helpful
2
Replies

Help! LDAP on ACS 1120 appliance

phamthanhchuong
Level 1
Level 1

‎08-02-2010 07:54 PM - edited ‎03-10-2019 05:18 PM

Hi all,

I configured LDAP on acs 1120 appliance,but i don't know how to fill parameter on ldap configuration:

Subject ObjectClass

Subject Name Attribute

Certificate Attribute

Group ObjectClass

Group map attribute

Subject search base

Group search base

My domain name is hph.tct.vn

Mapping group on AD server is internetAccess

Help me, please

Thankss

Labels:
Preview file
200 KB
0 Helpful
2 Replies 2

lomonaco
Level 1
Level 1

‎08-03-2010 05:00 AM

Hi Pham,

If you are using Active Directory, I suggest you use the free tool LDP.EXE (Support Tools or Resource Kit) to find more information about your

schema..

Any way, try the following options:

Subject Search Base DC= hph, DC=tct, DC=vn

Group Search Base   DC= hph, DC=tct, DC=vn

Subject ObjectClass user

Subject Name Attribute sAMAccountName

Group Objectclass group

Group Map Attribute member

Group Objects Contain References to Subjects distinguished name

Obs. Is better to restrict the ACS where will look for subjects or groups, but you didn't in your message where the users/groups that will be used in ACS are....

My Best Regards,

Andre Lomonaco

0 Helpful

phamthanhchuong
Level 1
Level 1
In response to lomonaco

‎08-03-2010 08:41 PM

Hi lomonaco,

The group that will be used in ACS is NguoiDungThue

The group that will be used in Active Directory server is InternetAccess
And i don't know how to mapping 2 groups

Thanks for your help,

Best Regards

0 Helpful
Customers Also Viewed These Support Documents