Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
952
Views
0
Helpful
1
Replies

LMS 3.0 MS active directory

phamthecong
Level 1
Level 1

‎11-07-2007 09:29 PM

dear all,

I just installed a LMS3.0 using MS AD(2003) for authentication. it seems to me that everyone in the AD is athenticated rather than a group in that AD as we expected.

our AD structure is :

hola.nssnet.net

|->group1

. |-> subscrisber

. |-> groups2

. |->admin

I setup on LMS3.0 like this:

server; ldap://x.x.x.x

useroot: cn=admin, cn=group2, cn=subscribers, cn=group1, dc=hola, dc=nssnet, dc=net

RDN-Prefix:

is there anyway that we allow only users in group "admin" to access LMS rather than everyone in AD?

thanks,

tao

Labels:
0 Helpful
1 Reply 1

Joe Clarke
Cisco Employee
Cisco Employee

‎11-07-2007 11:26 PM

Anyone who successfully authenticates against the login module (AD in this case) will be allowed to access LMS. Their degree of access will depend on the roles you have assigned them. If they do not have a local account in LMS, then they will get Help Desk privileges. The only way to prevent this is to integrate LMS with ACS, and integrate that ACS server with AD. In that way, ACS will be stricter in who it allows to access LMS.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents