Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
901
Views
8
Helpful
6
Replies

using AD with ACS 5.3

Go to solution
abukuru95
Level 3
Level 3

‎06-26-2012 01:17 AM - edited ‎03-10-2019 07:14 PM

Hello Guys,

i have joined my ACS appliance to my AD domain and i would like authentication to be via active directory.

i already have an AD group that i can see but i just cannot figure out where to specify that all requests should go to the AD. atleast when i test, it does not work. for internal users, it is working perfectly. Do i have to do this on the directory attributes area?

I would also like to configure some access policies for some users. do i do this on the AD or on the ACS?

thanks in advance.

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Jatin Katyal
Cisco Employee
Cisco Employee

‎06-26-2012 04:42 AM

Go through the below listed link and see if that answer your quesries. In case you still have any questions, please let us know.

http://www.security-solutions.co.za/cisco-CSACS-1121-K9-5.2-configuration-example.html#_Toc299956260

Regards,

Jatin

Do rate helpful posts-

~Jatin

View solution in original post

6 Replies 6

Go to solution
maldehne
Cisco Employee
Cisco Employee

‎06-26-2012 04:34 AM

If you want all users trying to login to all your AAA clients to authenticate against AD , you need to define single rule identity policy and point to AD.

Pleaes correct me if i misunderstod you!!

Regards

Go to solution
Jatin Katyal
Cisco Employee
Cisco Employee

‎06-26-2012 04:42 AM

Go through the below listed link and see if that answer your quesries. In case you still have any questions, please let us know.

http://www.security-solutions.co.za/cisco-CSACS-1121-K9-5.2-configuration-example.html#_Toc299956260

Regards,

Jatin

Do rate helpful posts-

~Jatin

Go to solution
abukuru95
Level 3
Level 3

‎06-26-2012 12:22 PM

thanks maldehne and jkatyal.

i actually went through the proposed link but it much applies to version 5.2 of the ACS. i am running ACS 5.3

in the options, i do not have the shell profile option as shown in the attached pic.

where can i configure user authentication privileges for the AD users?

thanks a lot for the help.


0 Helpful

Go to solution
Jatin Katyal
Cisco Employee
Cisco Employee
In response to abukuru95

‎06-26-2012 12:32 PM

If you look at the bottom right corner of authorization rule page, you would see a tab called customize > click on it and move the shell profilefrom available to seleceted section.

Regards,

Jatin

Do rate helpful posts-

~Jatin
0 Helpful

Go to solution
abukuru95
Level 3
Level 3
In response to Jatin Katyal

‎06-26-2012 11:33 PM

Hello jkatyal,

I figured it out. actually, the problem is i had not configured a rule to associate the AD users too and a profil.

thanks a lot for the help.

0 Helpful

Go to solution
Jatin Katyal
Cisco Employee
Cisco Employee
In response to abukuru95

‎06-27-2012 04:37 AM

Glad

~Jatin
0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents