Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
508
Views
0
Helpful
2
Replies

ACS Windows Server with wrong user authenticatoin

t.waibel
Level 1
Level 1

‎10-09-2009 01:41 AM - edited ‎03-10-2019 04:43 PM

Hello,

we have a new Windows ACS Server with external user database authentication. Users at the ACS Server were configured, disabled, enabled and deleted by RDBMS synchronization with account actions.

We have the problem that a user could be authenticated through the external LDAP even though if the user or his group is disabled inside the Windows ACS Server.

The same procedure doesn't work with our ACS appliance where user administration is done only through the webinterface .

Does anybody know a solution for this problem?

Best regards

Torsten Waibel

Labels:
0 Helpful
2 Replies 2

darpotter
Level 5
Level 5

‎10-13-2009 12:14 AM

Could it be you have unknown user authentication enabled?

If you did, and a username came through authentication in a different format to one one added via dbsync... eg user@domain or domain\user the unknown user policy might legitimately think its a different user. In which case it would depend on what group mapping had been setup.

Just a thought.

0 Helpful

t.waibel
Level 1
Level 1
In response to darpotter

‎03-03-2010 02:34 AM

Hello darpotter,

finally we have fixed the problem. it was a lyer 8 one ;-)

Best regards

Torsten

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents