https://community.cisco.com/t5/network-access-control/acs-windows-server-with-wrong-user-authenticatoin/m-p/1306412#M343101 <HTML><HEAD></HEAD><BODY><P>Could it be you have unknown user authentication enabled?</P><P></P><P>If you did, and a username came through authentication in a different format to one one added via dbsync... eg user@domain or domain\user the unknown user policy might legitimately think its a different user. In which case it would depend on what group mapping had been setup.</P><P></P><P>Just a thought.</P></BODY></HTML> Tue, 13 Oct 2009 07:14:38 GMT darpotter 2009-10-13T07:14:38Z https://community.cisco.com/t5/network-access-control/acs-windows-server-with-wrong-user-authenticatoin/m-p/1306411#M343054 <P>Hello,</P><P></P><P>we have a new Windows ACS Server with external user database authentication. Users at the ACS Server were configured, disabled, enabled and deleted by RDBMS synchronization with account actions. </P><P></P><P>We have the problem that a user could be authenticated through the external LDAP even though if the user or his group is disabled inside the Windows ACS Server.</P><P></P><P>The same procedure doesn't work with our ACS appliance where user administration is done only through the webinterface . </P><P></P><P>Does anybody know a solution for this problem?</P><P></P><P>Best regards</P><P>Torsten Waibel</P> Sun, 10 Mar 2019 23:43:38 GMT https://community.cisco.com/t5/network-access-control/acs-windows-server-with-wrong-user-authenticatoin/m-p/1306411#M343054 t.waibel 2019-03-10T23:43:38Z https://community.cisco.com/t5/network-access-control/acs-windows-server-with-wrong-user-authenticatoin/m-p/1306412#M343101 <HTML><HEAD></HEAD><BODY><P>Could it be you have unknown user authentication enabled?</P><P></P><P>If you did, and a username came through authentication in a different format to one one added via dbsync... eg user@domain or domain\user the unknown user policy might legitimately think its a different user. In which case it would depend on what group mapping had been setup.</P><P></P><P>Just a thought.</P></BODY></HTML> Tue, 13 Oct 2009 07:14:38 GMT https://community.cisco.com/t5/network-access-control/acs-windows-server-with-wrong-user-authenticatoin/m-p/1306412#M343101 darpotter 2009-10-13T07:14:38Z https://community.cisco.com/t5/network-access-control/acs-windows-server-with-wrong-user-authenticatoin/m-p/1306413#M343175 <HTML><HEAD></HEAD><BODY><P>Hello darpotter,</P><P></P><P>finally we have fixed the problem. it was a lyer 8 one <span class="lia-unicode-emoji" title=":winking_face:">😉</span></P><P></P><P>Best regards</P><P>Torsten</P></BODY></HTML> Wed, 03 Mar 2010 10:34:12 GMT https://community.cisco.com/t5/network-access-control/acs-windows-server-with-wrong-user-authenticatoin/m-p/1306413#M343175 t.waibel 2010-03-03T10:34:12Z