Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

ACS 3.0 and LDAP

Hi,

We want to authenticate RAS users using LDAP queries on a Windows 2000 AD. We also setup a unknown user policy authenticating users using LDAP.

With this configuration we are running in the problem, that all users defined in the LDAP can access our network.

My question:

Is there a way to gain access only if the user is in a particular group.

thxs Michael

2 REPLIES
New Member

Re: ACS 3.0 and LDAP

Yes, under group mappings in external database configuration, you map users in allowed groups to ACS groups which have access. You then map users who aren't allowed access to the "no access group."

No Access Group for Group Set Mappings

http://www.cisco.com/univercd/cc/td/doc/product/access/acs_soft/csacs4nt/csnt30/user/q.htm#xtocid2932220

HTH

Jeff

New Member

Re: ACS 3.0 and LDAP

Thxs. It works pretty much.

Regards Michael

109
Views
0
Helpful
2
Replies
CreatePlease to create content