08-26-2013 03:24 AM - edited 03-10-2019 08:48 PM
Hi all,
I am using ACS 4.2 for Wireless users authentications. ACS is integrated with the Active Directory as External Database. What I can observe is, when a user attempts to login using "username", ACS dynamically maps an entry for this user, but if the same user re-attempts with "domain\username", there is another dynamic mapping against the same AD user.
Can I strip off the domain name from the username automatically if the user inputs this, or is there any other way to control this as I want a single mapping for each AD user either he/she logs in using "domain\username" format or "username" format.
I have read about Domain name stripping on LDAP configuration and Domain Qualified names things, but how to apply these in this situation? Or is there any other way?
Looking forward for valuable response.
Regards, Sohail
08-26-2013 03:35 AM
Hi Sohail,
You can go to ACS 4.2> Network Configuration> Proxy Distribution Table> Edit> Domain Stripping.
Regards
Minakshi (Do rate the helpful posts)
08-26-2013 03:37 AM
Thank you Minakshi for quick response. Will this strip off the domain name if enter? I hope you got my point that I want to have only one user mapping against each AD user, who attempts to log in using either domain name or without domain name.
Regards, Sohail
08-26-2013 03:51 AM
Yes, Sohail. It will certainly remove the domain name.
Regards
Minakshi (Do rate the helpful posts)
08-27-2013 01:59 AM
Hi Minakshi,
In addition to the stripping the domain name, is there any way that I can restrict the user to put the domain name with username like "domain\username"? Can I create any NAP or NAR in which I can check if the user is sending the username in "domain\username" format and rest can be denied?
Regards, Sohail
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide