Hi,
Yes, it's possible. If you have the ACS Solution Engine (appliance) you need to do the following:
- On Windows Server where the Active Directory is configured, you need to install the Remote Agent (you will find it on the ACS CD-ROM). It will create a file named "CSAgent.ini". You will configure the ip address of the ACS on this file.See details on the link below:
http://www.cisco.com/en/US/products/sw/secursw/ps5338/products_configuration_guide_book09186a0080589614.html
- After that, you need to configure ACS to use external database (Windows Database). So, on NEtwork Configuration, you'll add a Remote Agent (remote agent name (assign any name), ip address (this is the ip of Windows Server), TCP Port number (the default is 2004) and group (if you have configured it. If not, choose "not assigned". After click on the remote agent added and you need to see a message saying that the remote agent is running and that the WIndows Authentication service is available. If so, the next step is configuring ACS to use that. So, click on External Databases > Advanced Options> Windows database > Remote Agent Configuration. You will set the remote agent added as the primary. After that, you click on External Databases > Advanced Options> Windows database > Windows authentication configuration and set the options that you want. See details on the links below:
http://www.cisco.com/univercd/cc/td/doc/product/access/acs_soft/csacsapp/csapp40/ugse40/d.htm#wp353636
http://www.cisco.com/univercd/cc/td/doc/product/access/acs_soft/csacsapp/csapp40/ugse40/qu.htm
Regards,
