Buy or Renew
Buy or Renew
Cisco Virtual Engineer generative AI bot now active in Wireless Discussion Forum. Learn more.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
449
Views
0
Helpful
2
Replies

LEAP - ACS Authen. against active directory for users of another domain

c.fritz
Level 1
Level 1

‎11-06-2002 06:55 AM - edited ‎07-04-2021 11:30 PM

We installed ACS 3.0 on W2000 server, member of a domain. When we tried

to authenticate users from another domain, but it failed.

We achieved to find out the problem. First, the server tries to find the PDC of the other domain (DNS request : _ldap._tcp.pdc._msdcs.domain). The DNS

server answer with the full name and IP address. But afterwards, instead of using the DNS answer, the server make a new request with the PCD name

and appending its own domain. The DNS request fails, and the user is not authenticated. A workaround consists in chaging the DNS search-list for the server, but I'm intersted if anyone had a better solution, or if the new release (ACS 3.1) solves this issue.

Labels:
0 Helpful
2 Replies 2

jbohla
Level 1
Level 1

‎11-12-2002 11:48 AM

Your case looks similair to this bug CSCdy18833, the bug has a work around also check it out.

0 Helpful

c.fritz
Level 1
Level 1
In response to jbohla

‎11-13-2002 06:05 AM

Yes, it looks similar, but the proposed workarounds don't solve the DNS

lookup issue.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card