Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
448
Views
0
Helpful
1
Replies

Group Mappings for Domain in the ACS external user databases

zheka_pefti
Level 2
Level 2

‎11-04-2008 09:46 AM - edited ‎03-10-2019 04:10 PM

Hi gurus!

I might skipped the answer to my question in the security section of this forum. The list huge and sorry if the question is asked again.

I have a concern regarding adding mappings for Domain in the ACS external user database. The point is that every NT group has an asterisk after the comma, and the ACS documentation says:

"The asterisk (*) at the end of a group mapping indicates that the mapping applies users who belong to other groups in addition to those specified by the mapping."

Would it mean that every user who doesn't belong to the NT group in question will be successfully authenticated?

Eugene

Labels:
0 Helpful
1 Reply 1

carenas123
Level 5
Level 5

‎11-10-2008 09:14 AM

The asterisk at the end of each set of groups indicates that users who are authenticated with the external user database can belong to other groups besides those in the set.

For the further description for the group mapping for the for Cisco Secure Access Control Server following guide may help you

http://www.cisco.com/en/US/docs/net_mgmt/cisco_secure_access_control_server_for_windows/4.2/user/guide/GrpMap.html#wpxref41938

0 Helpful
Customers Also Viewed These Support Documents