Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Agent Remote ACS Se with AD 2008

Hello

My name is Ivan. I have a ACS SE 4.2.1.15 with Agent Remote of the same version. I would like to integrate with Active Directory 2008 R2 of 32 bits

Is possible to do it?. And is possible to do it with AD 2008 R2 of 64 bits?. What options can i have?

Thanks

Regards.

Ivan.

1 REPLY
Cisco Employee

Re: Agent Remote ACS Se with AD 2008

ACS remote agent can only be installed on 64 bit OS if we have ACS and RA code running 4.2.1.15

Installing RA or having AD running on windows 2008 R2 (as a backend database) is not tested. In most of the secnarios it does't work and cisco has filed a enhancement request on the same.

As of now, windows 2008 R2 is not supported with any version of ACS and remote Agent.

Acs 4.2.x doesn't support all newer versions of Windows 2008. It only supports the below listed version.

Supported Operating Systems section

--Windows Server 2008, Standard Edition

--Windows Server 2008, Enterprise Edition

--Japanese Windows Server 2008, Standard Edition, Service Pack 2

--Japanese Windows Server 2008, Enterprise Edition, Service Pack 2

Link for System requirement and supported version

http://www.cisco.com/en/US/docs/net_mgmt/cisco_secure_access_control_server_for_windows/4.2.1/Installation_Guide/windows/install.html#wp1041324

However, we have few option at this point which may suit your requirement:

1.] You may install RA on 2008 Non-R2

2.] Replace AD with LDAP because we can use win 2008 R2 with LDAP as a protocol.

3.] Go for ACS 5.2 only for cases where we want DC to run on win 2008 R2. We don't need remote agent there.

Related bugs and enhancement

------------------------------------------

Applicable where customer is trying to ACS windows or remote agent on the windows 2008 R2

CSCta35271    Support for Windows server 2008 R2

Applicable where customer is directing all the authentication request to AD/DC as 2008 R2

CSCtg37183    ACS 4.x doesn't support 2008 R2 Server for AD

CSCtg12399  ACS 5.1 did not support 2008 R2 Server for AD.

We have also seen this working in few instances but again it's not tested by Cisco so there may be issues that you may not afford in your production enviornment.

Regards,

Jatin

Do rate helpful posts-

Windows 2008 R2 is  not supported with any version of ACS irrespective of platform.

Acs 4.2.x doesn't support all newer versions of Windows 2008. It only supports the below listed version.

Supported Operating Systems section

--Windows Server 2008, Standard Edition

--Windows Server 2008, Enterprise Edition

--Japanese Windows Server 2008, Standard Edition, Service Pack 2

--Japanese Windows Server 2008, Enterprise Edition, Service Pack 2

Link for System requirement and supported version

http://www.cisco.com/en/US/docs/net_mgmt/cisco_secure_access_control_server_for_windows/4.2.1/Installation_Guide/windows/install.html#wp1041324

However, we have few option at this point which may suit your requirement:

1.] Rool back your AD to standard 2008 Non-R2.

2.] Replace AD with LDAP because we can use win 2008 R2 with LDAP as a protocol.

3.] Go for ACS 5.2 only for cases where we want DC to run on win 2008 R2

Related bugs and enhancement

------------------------------------------

Applicable where customer is trying to ACS windows or remote agent on the windows 2008 R2

CSCta35271    Support for Windows server 2008 R2

Applicable where customer is directing all the authentication request to AD/DC as 2008 R2

CSCtg37183    ACS 4.x doesn't support 2008 R2 Server for AD

CSCtg12399  ACS 5.1 did not support 2008 R2 Server for AD.

We have also seen this working in few instances but again it's not tested by Cisco so there may be issues that you may not afford in your production enviornment.

Regards,

Jatin
~BR Jatin Katyal **Do rate helpful posts**
441
Views
0
Helpful
1
Replies
CreatePlease login to create content