cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements
Announcements
Choose one of the topics below to view our ISE Resources to help you on your journey with ISE

This community is for technical, feature, configuration and deployment questions.
For production deployment issues, please contact the TAC! We will not comment or assist with your TAC case in these forums.
Please see How to Ask the Community for Help for other best practices.

970
Views
5
Helpful
2
Replies
Highlighted
Beginner

ACS 5.2 and External Identity AD User

Hi,

We are using ACS 5.2 and we are trying to create a Microsoft Active Directory (AD) Identity Store. We have a user to be used in the Active Directory creation General page and we would like to know how the test communication / ACS to AD communication takes place.

Our user is a predefined user in AD and has admin rights, but the password expires every 60 days. Will this affect the communication between AD and ACS 5.2 at everytime the entered user's password expires? Do we always have to change the password in the External Identity store everytime the password expires?

Marian

2 REPLIES 2
Highlighted
Cisco Employee

Yes, if the ACS admin user password expires, you're killing the ACS-AD communication. The doc says that the ACS password should never expire, otherwise you have to remodify it constantly.

Highlighted

Thanks for this Nicolas!