Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

LEAP - ACS Authen. against active directory for users of another domain

We installed ACS 3.0 on W2000 server, member of a domain. When we tried

to authenticate users from another domain, but it failed.

We achieved to find out the problem. First, the server tries to find the PDC of the other domain (DNS request : _ldap._tcp.pdc._msdcs.domain). The DNS

server answer with the full name and IP address. But afterwards, instead of using the DNS answer, the server make a new request with the PCD name

and appending its own domain. The DNS request fails, and the user is not authenticated. A workaround consists in chaging the DNS search-list for the server, but I'm intersted if anyone had a better solution, or if the new release (ACS 3.1) solves this issue.

2 REPLIES
New Member

Re: LEAP - ACS Authen. against active directory for users of ano

Your case looks similair to this bug CSCdy18833, the bug has a work around also check it out.

New Member

Re: LEAP - ACS Authen. against active directory for users of ano

Yes, it looks similar, but the proposed workarounds don't solve the DNS

lookup issue.

141
Views
0
Helpful
2
Replies