Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

Is Context Directory Agent required now for Prime Security Manager?

I am setting up the Cisco Prime Security manager. I want to integrate it with AD agent so I can do Ip to user mapping. I am finding that the AD agent is retired and now Cisco says to use Context Directory Agent. Is there any other way of integrating AD with the CX module?

I wanted to know before starting a lengthy install.

 

I know Context Directory Agent is used for other things. 

Everyone's tags (1)
1 ACCEPTED SOLUTION

Accepted Solutions
Hall of Fame Super Silver

CDA is the integration proxy

CDA is the integration proxy between CX module services and AD.

Without it, you cannot use identity-based services passively (no user input required). You would instead need to have users prompted to provide their authentication actively to the firewall (which can in turn ask AD, LDAP etc. for authentication) in order to map their IP address to their identity.

Reference.

1 REPLY
Hall of Fame Super Silver

CDA is the integration proxy

CDA is the integration proxy between CX module services and AD.

Without it, you cannot use identity-based services passively (no user input required). You would instead need to have users prompted to provide their authentication actively to the firewall (which can in turn ask AD, LDAP etc. for authentication) in order to map their IP address to their identity.

Reference.

94
Views
0
Helpful
1
Replies
CreatePlease to create content