Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Cisco ACS check for AD

Hi,

     Is there any way to check that the Users were authenticated by AD through cisco ACS 4.2, I have deploy the Cisco ACS 4.2 with WLC 5500, now i have to check whether the user are authenticated by ACS or AD kindly guide me how i check it.

all users were connected and authenticated having domain user.

i am confuse whether ACS authenticate users from internal database or from AD.

Kindly help me..... ill b very thankful to you.....

M.Bilal Iqbal

7 REPLIES

Cisco ACS check for AD

Hello, yes i believe if you check the pass logs in ACS it should tell you what data base the user was auth against. Internal or your domain.

Have you checked your PASS logs?

__________________________________________________________________________________________ "Satisfaction does not come from knowing the solution, it comes from knowing why." - Rosalind Franklin ___________________________________________________________
New Member

Cisco ACS check for AD

Hi,

Thanks for your reply, are you talking about Passed Authentications log, if not can you guide me from where i get this log.

M.Bilal

Cisco ACS check for AD

Yes exactly. I dont have my 4.2 in front of me but there is a column that should state where the user was auth from. Also, you can check if your WLC is to check local first or AD.

You have identical user name and passords local to the ACS and also in AD, really?

__________________________________________________________________________________________ "Satisfaction does not come from knowing the solution, it comes from knowing why." - Rosalind Franklin ___________________________________________________________
New Member

Cisco ACS check for AD

no i have different users for internal and for AD, as you know that we have to make a group and add users in it and map the ACS group against the AD group. so it confuse me if we enter the users in that ACS group then all the users will authenticated by ACS internaly or it will check AD also?

Cisco ACS check for AD

If you check the user record itself, there is a drop down as to where that user should authenticate against (acs or external).

__________________________________________________________________________________________ "Satisfaction does not come from knowing the solution, it comes from knowing why." - Rosalind Franklin ___________________________________________________________
New Member

Cisco ACS check for AD

Are you talking about this user setup. yes i select windows database for it....

Cisco ACS check for AD

Ok if you have a user set up in ACS in a group and it is marked "windows" its getting sent to AD to get authenticated. Did you check your pass logs ? There is a field called database. This should show you if the user is ACS or AD. If its AD it will have the name of your domain (that was set up in ACS).

__________________________________________________________________________________________ "Satisfaction does not come from knowing the solution, it comes from knowing why." - Rosalind Franklin ___________________________________________________________
273
Views
0
Helpful
7
Replies
CreatePlease login to create content