03-22-2013 02:30 AM
Hello All,
I'm just starting playing around with CIAC.
In our lab CIAC, i've just enabled directory integration and am now occasionally seeing errors in CPO process trying to connect back to CCP with following error messages: Login failed for user Admin.
I believe this due to the portal trying to authenticate the user admin against AD whilst this is a local CCP user.
Has anyone else seen this behaviour?
What can I do to solve this?
Regards,
Filip
03-22-2013 07:01 AM
Ok, so I created a user in AD called Admin and that got it to work again
03-22-2013 11:26 AM
This is by design as the user authenticating against AD needs to be in AD. It is documented in the Appendix A of 3.1.1 Config Guide and specifically states:
A user account (any username) with “Read MemberOf” permissions that will be used for performing authentication, directory searches, and user imports into the cloud portal. A user account (any username) with “Read MemberOf” permissions that will be used for performing authentication, directory searches, and user imports into the cloud portal.
04-01-2013 01:16 PM
Take a look at the "Administrative Bypass of SSO" session in the Integration Guide document (page 1-11). It describes a way to bypass SSO in emergency cases.
Regards
07-16-2013 10:59 AM
Otavio,
I am working on an SSO related task, and the document you've pointed to might have information I am looking for. Could you please point me to where I can access this.
Thanks
07-16-2013 12:05 PM
Mohan
I found the document at Cisco's download site. Not sure if you are able to reach it but here it goes anyway:
Hope it helps.
07-16-2013 02:37 PM
Thanks a bunch Otavio. I was able to reach it.
I had a related question on this link, do let me know if you've seen a similiar usecase with Cisco Portal.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide