cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1615
Views
0
Helpful
1
Replies

ACS 5.2 Machine Authentication and AD user

philnordin
Level 1
Level 1

I am trying to setup up a rule to allow wireless access only to users in my AD when they use computers from my AD.

I have Machine authentication working on it's own (computer boots up and connects to wireless - confrimed by ACS logs)

I have User authentication working

But when I try to creat the floowing rule:

it does not work.

Access Policy

Access Service:

Default Network Access

Identity Store:

AD1

Authorization Profiles:

DenyAccess

Exception Authorization Profiles:

Active Directory Domain:

rbe.sk.ca

Identity Group:

All Groups:RPS Wireless users

Access Service Selection Matched Rule:

Rule-1

Identity Policy Matched Rule:

Identity-Rule-3

Selected Identity Stores:

AD1

Query Identity Stores:

Selected Query Identity Stores:

Group Mapping Policy Matched Rule:

NA-Group-Mapping-Rule-1

Authorization Policy Matched Rule:

Default

Authorization Exception Policy Matched Rule:

Everything seem to fine until it gets to the last rule.

Any Idea's?

1 Reply 1

philnordin
Level 1
Level 1

I solved it. I seem that you have to have "Machine Access Restrictions" (External Identity Stores > Active Directory) checked. then it works.