I have some problems with the dynamic users. I want to move them to another group and do some changes on userid, but I also want that they are replicated then. The first is no issue, the second is, since they stay flagged as "dynamic users".
Can this be solved without deleting and recreating them?
Another question --> Can I block the button "remove dynamic users"?
It stated, ACS Database replication may inappropriately flag users as "learned dynamically" and fail to replicate them in certain cases. If we modify the group membership for one of these users and explicitly set the group membership, the user will still fail to replicate to the secondary ACS server. This is a bug.
This bug was resolved in 18.104.22.168.7.
Based on the above bug, if you make a change for a user present on the external DB (the user account haven't been manually created on the ACS db) and not on the internal ACS DB under User Setup, ACS considers it to be still a dynamically mapped user and thus doesn't replicate it.
Also, you can not block the this tab " remove dynamic users". However, you can restrict user not to access External User Databases section by unchecking the option under administration control >>> click on the user account and disable this option.
DocumentationCode download linksGoalRequirementLimitationsSupported ISR
and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and
UCS-E Blades:Step by Step ConfigurationConfigure one of the connectivity
options to access the Cisco IMC from the n...
Firepower Threat Defense (NGFWv) on UCS E-series - Transparent Mode in
HA DocumentationCode download linksGoalRequirementLimitationsSupported
ISR and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and
UCS-E Blades:Step by Step ConfigurationCo...
Question I am currently unable to specify "crypto keyring" command when
configuring VPN connection on my cisco 2901 router. The following
licenses have been activated on my router :