I have been doing a bit of reading on the ACS 4.2 remote agent compatibility with Windows 2008 R2, and it seems like the only way out is to upgrade the ACS to 5.2. We have Cisco ACS 4.2 SE and I would want someone to confirm that what if I install the Remote agent on a Windows 2003 member server instead of the 2008 R2 DC. Will such a scenario work?
Feedback is appreciated.
Yes, here is this one which has a bug documented with this information CSCtg37183 :
Extracted from previous link:
|ACS 4.x doesn't support 2008 R2 Server for AD.|
ACS 4.x does not support authentication to a backend 2008 R2 Active Directory server.
Install the ACS or Remote Agent on a 2003/2008 domain controller
Cisco doesn't support this scenario because sometimes work fine other doesn't work at all, so nobody wants an unstable network right, unfortunately the workaround doesn't help much. Although there is an ACS 5.2 trial version that you can test, let me know so I can get you the links.