Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

TACACS authentication ACE module with domain user

Problem: Unable to get windows domain users authenticated thru the ACE module (Version A2(1.0)) towards the Cisco ACS 4.2 server.

I have successfully setup AAA against my Cisco ACS 4.2 server, it works fine authenticating local ACS users.

I've setup the custom tacacs variables so I'm getting the correct role for the contexts aswell.

But when I try to login using my domain user, eg. domain\user, im getting "login incorrect", I know the password is correct, hence its working at other Cisco devices with Tacacs. Also when looking into the passed authentications on the ACS, it says "passed", but the ACE tells "login incorrect"..

Im able to get my domain account authenticated if I dont specify the domain in front of the username, but then I have 2 different users on my ACS, I would like to use my domain\user only, hence its configured for a special group on the ACS.

Isn't possible to get windows domain users authenticated on the ACE module against Cisco ACS.. ??

CreatePlease to create content