Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1929
Views
0
Helpful
5
Replies

Cisco ACS 4.2 integration with Active Directory

Go to solution
Junior Mateus
Level 1
Level 1

‎06-27-2012 01:53 AM - edited ‎03-10-2019 07:14 PM

Hello,

I´m new in the administration of ACS, we have recently implemented on server ACS version 4.2

for manager all users authorization for our Network.

We are in one environement which have an Active Directory, group and users.

Now, i´m just able to creat a new user in ACS and work with on the Client SWITCH, what i need to do, is to integrate my ACS 4.2 with Active Directory.

for work with the user and Group that a register in my AD.

Someon can help me please?

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
gouravbathla
Level 1
Level 1

‎06-27-2012 02:49 AM

Hi

If you are using windows server for installation of acs 4.2 you just need to make this server a member of domain.

View solution in original post

0 Helpful
5 Replies 5

Go to solution
gouravbathla
Level 1
Level 1

‎06-27-2012 02:49 AM

Hi

If you are using windows server for installation of acs 4.2 you just need to make this server a member of domain.

0 Helpful

Go to solution
Junior Mateus
Level 1
Level 1

‎06-27-2012 03:03 AM

Yes, i already did it,

But  what i want now, is that from my ACS to see the user that are in the AD groups.

And then i´ll work with this User for AAA  or other service,

Do you know how can i perform that?

Message was edited by: Junior Mateus

0 Helpful

Go to solution
Jatin Katyal
Cisco Employee
Cisco Employee
In response to Junior Mateus

‎06-27-2012 04:36 AM

You can't actually see the user's membership from ACS. All you can do, create group-mapping under external database >> group mapping section. This would give you an option to map external (AD) group with an Internal group.The group memberrship need to be modified under Active Directory.

Once user is succussfully authenticated and learned as a dynamic user in ACS user setup database, it would be mapped with an ACS internal group based on group mapping we did.

Let me know if you have any doubts.

Regards,

Jatin

~Jatin
0 Helpful

Go to solution
Junior Mateus
Level 1
Level 1
In response to Jatin Katyal

‎06-27-2012 09:29 AM

But how from Active Directory can i configure this membership, this mean, that i can from active directory add a user on this group that i will mapp on the ACS, and the authentication will work ?

I finish to mapp a group on the external database, i can see the group of my AD, but i can´t work with the user that i add into the AD group?

Should i perform another step?

0 Helpful

Go to solution
gouravbathla
Level 1
Level 1
In response to Junior Mateus

‎06-27-2012 04:44 AM

No We can't see users in group.

We only have groups to play with.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents