https://community.cisco.com/t5/network-access-control/using-ad-with-acs-5-3/m-p/1984078#M181509 <HTML><HEAD></HEAD><BODY><P>If you want all users trying to login to all your AAA clients to authenticate against AD , you need to define single rule identity policy and point to AD.</P><P></P><P>Pleaes correct me if i misunderstod you!!</P><P></P><P>Regards</P></BODY></HTML> Tue, 26 Jun 2012 11:34:33 GMT maldehne 2012-06-26T11:34:33Z https://community.cisco.com/t5/network-access-control/using-ad-with-acs-5-3/m-p/1984077#M181505 <P>Hello Guys,</P><P></P><P>i have joined my ACS appliance to my AD domain and i would like authentication to be via active directory.</P><P>i already have an AD group that i can see but i just cannot figure out where to specify that all requests should go to the AD. atleast when i test, it does not work. for internal users, it is working perfectly. Do i have to do this on the directory attributes area?</P><P></P><P>I would also like to configure some access policies for some users. do i do this on the AD or on the ACS?</P><P></P><P></P><P>thanks in advance.</P> Mon, 11 Mar 2019 02:14:24 GMT https://community.cisco.com/t5/network-access-control/using-ad-with-acs-5-3/m-p/1984077#M181505 abukuru95 2019-03-11T02:14:24Z https://community.cisco.com/t5/network-access-control/using-ad-with-acs-5-3/m-p/1984078#M181509 <HTML><HEAD></HEAD><BODY><P>If you want all users trying to login to all your AAA clients to authenticate against AD , you need to define single rule identity policy and point to AD.</P><P></P><P>Pleaes correct me if i misunderstod you!!</P><P></P><P>Regards</P></BODY></HTML> Tue, 26 Jun 2012 11:34:33 GMT https://community.cisco.com/t5/network-access-control/using-ad-with-acs-5-3/m-p/1984078#M181509 maldehne 2012-06-26T11:34:33Z https://community.cisco.com/t5/network-access-control/using-ad-with-acs-5-3/m-p/1984079#M181511 <HTML><HEAD></HEAD><BODY><P>Go through the below listed link and see if that answer your quesries. In case you still have any questions, please let us know.</P><P><A class="jive-link-external-small" href="http://www.security-solutions.co.za/cisco-CSACS-1121-K9-5.2-configuration-example.html#_Toc299956260">http://www.security-solutions.co.za/cisco-CSACS-1121-K9-5.2-configuration-example.html#_Toc299956260</A></P><P></P><P></P><P>Regards,</P><P>Jatin</P><P></P><P>Do rate helpful posts-</P></BODY></HTML> Tue, 26 Jun 2012 11:42:37 GMT https://community.cisco.com/t5/network-access-control/using-ad-with-acs-5-3/m-p/1984079#M181511 Jatin Katyal 2012-06-26T11:42:37Z https://community.cisco.com/t5/network-access-control/using-ad-with-acs-5-3/m-p/1984080#M181513 <HTML><HEAD></HEAD><BODY><P>thanks <A _jive_internal="true" href="https://community.cisco.com/people/maldehne" id="jive-2627307066570198777846" style="background-color: #f7fafb; border-collapse: collapse; font-size: 12px; list-style: none; outline: none; color: #000000; font-weight: bold; font-family: Arial, verdana, sans-serif;">maldehne</A> and <A _jive_internal="true" class="active_link" href="https://community.cisco.com/people/jkatyal" id="jive-2073117066570299795846" style="border-collapse: collapse; list-style: none; outline: none; color: #000000; font-weight: bold; float: left;">jkatyal</A>. </P><P>i actually went through the proposed link but it much applies to version 5.2 of the ACS. i am running ACS 5.3</P><P>in the options, i do not have the shell profile option as shown in the attached pic.</P><P></P><P>where can i configure user authentication privileges for the AD users?</P><P></P><P>thanks a lot for the help.<IMG src="http://supportforums.cisco.com/sites/default/files/legacy/9/7/4/93479-sample.png" class="jive-image" /></P><P></P><P></P><P></P><DIV style="border-collapse: collapse; list-style: none; float: left; width: 20px;"><BR /><P></P></DIV></BODY></HTML> Tue, 26 Jun 2012 19:22:27 GMT https://community.cisco.com/t5/network-access-control/using-ad-with-acs-5-3/m-p/1984080#M181513 abukuru95 2012-06-26T19:22:27Z https://community.cisco.com/t5/network-access-control/using-ad-with-acs-5-3/m-p/1984081#M181514 <HTML><HEAD></HEAD><BODY><P>If you look at the bottom right corner of authorization rule page, you would see a tab called customize &gt; click on it and move the shell profilefrom available to seleceted section.</P><P></P><P>Regards,</P><P>Jatin</P><P></P><P></P><P>Do rate helpful posts-</P></BODY></HTML> Tue, 26 Jun 2012 19:32:34 GMT https://community.cisco.com/t5/network-access-control/using-ad-with-acs-5-3/m-p/1984081#M181514 Jatin Katyal 2012-06-26T19:32:34Z https://community.cisco.com/t5/network-access-control/using-ad-with-acs-5-3/m-p/1984082#M181516 <HTML><HEAD></HEAD><BODY><P>Hello jkatyal,</P><P></P><P>I figured it out. actually, the problem is i had not configured a rule to associate the AD users too and a profil.</P><P></P><P></P><P>thanks a lot for the help.</P></BODY></HTML> Wed, 27 Jun 2012 06:33:49 GMT https://community.cisco.com/t5/network-access-control/using-ad-with-acs-5-3/m-p/1984082#M181516 abukuru95 2012-06-27T06:33:49Z https://community.cisco.com/t5/network-access-control/using-ad-with-acs-5-3/m-p/1984083#M181518 <HTML><HEAD></HEAD><BODY><P>Glad <SPAN __jive_emoticon_name="happy" __jive_macro_name="emoticon" class="jive_macro jive_emote" src="https://community.cisco.com/4.5.4/images/emoticons/happy.gif"></SPAN></P></BODY></HTML> Wed, 27 Jun 2012 11:37:29 GMT https://community.cisco.com/t5/network-access-control/using-ad-with-acs-5-3/m-p/1984083#M181518 Jatin Katyal 2012-06-27T11:37:29Z