We are working on installing ACS 5.0 through VPN and on an applicance. We are concerned about giving full windows domain admin rights to a generic account. What are security features are required to give the ID what it needs to authenticate through the windows active directory?
Re: ACS 5.0 - What are the req'd domain admin rights?
I believe you are talking about the account that you need to use on
the acs 5 to integrate with active directory. That account needs to have permissions to add computer accounts and thats it. Most people create that account on active directory and make it part of 'account operators' group or you can delegate control to have 'add computers' permission. Basically this is needed so that acs can add itself as a computer to the domain.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...