ACS 4.X - External User Database

Ramraj Sivagnanam Sivajanam · ‎01-24-2013

Hi Buddies

I need a small help. Currently I have a Cisco ACS 1113 v4.2 that has been integrated with Windows AD. Hence, users in certain domains are able to get authenticated. This is all good.

Now, I would like to add another domain into the ACS appliance. I did step 1 but the authentication fails. How come in step 2, I don’t see the domain I created in step 1? Please kindly help me.

Regards,

Ram

Warm regards,
Ramraj Sivagnanam Sivajanam

Michal Garcarz · ‎01-24-2013

Hi Ramraj,

1. This is appliance (ACS SE) with active directory agent intergration ?

http://www.cisco.com/en/US/docs/net_mgmt/cisco_secure_access_control_server_for_solution_engine/4.2/installation/guide/remote_agent/rawo.html

2. Or just windows based ACS ?

If yes you could add staticaly domains which are not available (or not even existing). That's what could happen for you. Is mentioned domain accessible from that windows machine which has ACS installed ?

Maybe you want to use trust relationship:

http://www.cisco.com/en/US/docs/net_mgmt/cisco_secure_access_control_server_for_windows/4.2/user/guide/UsrDb.html#wp353805

---

Michal

Ramraj Sivagnanam Sivajanam · ‎01-24-2013

Hi Michal
Yes, the Cisco ACS appliance has already been integrated with Windows AD. In fact, some of the users from certain domains can get authenticated.

My question here is, when I add another domain i.e. TECH.OCB.NET in the ACS appliance, the users in that domain cannot get authenticated? Do you know where the problem is?

Regards,

Ram

Warm regards,
Ramraj Sivagnanam Sivajanam

Michal Garcarz · ‎01-25-2013

Hi Ramraj,

1. What is the error reported by ACS then ?

2. That domain TECH.OCB.NET is totally seperated domain - or maybe there exists trust relationship between this domain and others which are working fine ?

---

Michal