06-26-2012 01:17 AM - edited 03-10-2019 07:14 PM
Hello Guys,
i have joined my ACS appliance to my AD domain and i would like authentication to be via active directory.
i already have an AD group that i can see but i just cannot figure out where to specify that all requests should go to the AD. atleast when i test, it does not work. for internal users, it is working perfectly. Do i have to do this on the directory attributes area?
I would also like to configure some access policies for some users. do i do this on the AD or on the ACS?
thanks in advance.
Solved! Go to Solution.
06-26-2012 04:42 AM
Go through the below listed link and see if that answer your quesries. In case you still have any questions, please let us know.
http://www.security-solutions.co.za/cisco-CSACS-1121-K9-5.2-configuration-example.html#_Toc299956260
Regards,
Jatin
Do rate helpful posts-
06-26-2012 04:34 AM
If you want all users trying to login to all your AAA clients to authenticate against AD , you need to define single rule identity policy and point to AD.
Pleaes correct me if i misunderstod you!!
Regards
06-26-2012 04:42 AM
Go through the below listed link and see if that answer your quesries. In case you still have any questions, please let us know.
http://www.security-solutions.co.za/cisco-CSACS-1121-K9-5.2-configuration-example.html#_Toc299956260
Regards,
Jatin
Do rate helpful posts-
06-26-2012 12:22 PM
i actually went through the proposed link but it much applies to version 5.2 of the ACS. i am running ACS 5.3
in the options, i do not have the shell profile option as shown in the attached pic.
where can i configure user authentication privileges for the AD users?
thanks a lot for the help.
06-26-2012 12:32 PM
If you look at the bottom right corner of authorization rule page, you would see a tab called customize > click on it and move the shell profilefrom available to seleceted section.
Regards,
Jatin
Do rate helpful posts-
06-26-2012 11:33 PM
Hello jkatyal,
I figured it out. actually, the problem is i had not configured a rule to associate the AD users too and a profil.
thanks a lot for the help.
06-27-2012 04:37 AM
Glad
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: