Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

ACS Windows Server with wrong user authenticatoin

Hello,

we have a new Windows ACS Server with external user database authentication. Users at the ACS Server were configured, disabled, enabled and deleted by RDBMS synchronization with account actions.

We have the problem that a user could be authenticated through the external LDAP even though if the user or his group is disabled inside the Windows ACS Server.

The same procedure doesn't work with our ACS appliance where user administration is done only through the webinterface .

Does anybody know a solution for this problem?

Best regards

Torsten Waibel

2 REPLIES
Silver

Re: ACS Windows Server with wrong user authenticatoin

Could it be you have unknown user authentication enabled?

If you did, and a username came through authentication in a different format to one one added via dbsync... eg user@domain or domain\user the unknown user policy might legitimately think its a different user. In which case it would depend on what group mapping had been setup.

Just a thought.

New Member

Re: ACS Windows Server with wrong user authenticatoin

Hello darpotter,

finally we have fixed the problem. it was a lyer 8 one ;-)

Best regards

Torsten

218
Views
0
Helpful
2
Replies
CreatePlease to create content