06-15-2007 02:47 AM - edited 03-10-2019 03:13 PM
When we restrict in Active Directory a User to which Workstation he is allowed to connect, we get the Error Message on the ACS." Windows Workstation is not allowd" Authentication failed.
Have you got an idea to solve the Problem. In the allowed wokstation we have got the DC and the ACS-server.
Thanks
06-15-2007 04:49 AM
Hi,
To satisfy Windows requirements for authentication requests, Cisco Secure ACS must specify the Windows workstation that the user is attempting to log into. Because Cisco Secure ACS cannot determine this information from authentication requests sent by AAA clients, it uses a generic workstation name for all requests. The workstation name used is "CISCO".
In the local domain and in each trusted domain and child domain that Cisco Secure ACS will
use to authenticate users, ensure both of the following:
?A computer account named "CISCO" exists.
?All users to be authenticated by Windows have permission to log into the computer named
"CISCO".
http://www.cisco.com/univercd/cc/td/doc/product/access/acs_soft/csacs4nt/acs
33/install/inst02.htm#wp981718
Hope that helps !
Regards,
Jagdeep
Note :If that answers your question, then please mark this thread as resolved, so that others can benefit from it.
06-18-2007 12:19 AM
Thank you for fast answering.
I think your solution is only correct,when the ACS ist not am member of the Domain.
In my scenario,the ACS is a member of the Active Directory.
Have you got another solution?
Thanks
06-18-2007 12:08 PM
Hi,
You need it even if acs is a part of domain.
Please test it , let me know how that goes.
Regards,
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide