Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
315
Views
0
Helpful
1
Replies

ACS 5.3 integration with Active Directory

SJ SJ
Level 1
Level 1

‎06-22-2013 08:34 AM - edited ‎03-10-2019 08:34 PM

I'm able to integrate ACS 5.3 with AD using domain admin user account. But when i try to use a service account with the below mentioned attributes(as per Cisco document) i am unable to integrate ACS with AD

  • Add workstations to domain user right in corresponding domain.
  • Create Computer Objects or Delete Computer Objects permission on corresponding

computers container where ACS machine's account is created before joining ACS machine to

the domain.

http://www.cisco.com/image/gif/paws/113571/acs5-ad_int_config-00.pdf

Please confirm whether it is mandatory to use a domain admin account for the integration.

Regards,

SJSJ

Labels:
0 Helpful
1 Reply 1

Jatin Katyal
Cisco Employee
Cisco Employee

‎06-22-2013 11:14 AM

Domain admin rights are not required. The account should have delete and add computer object on the domain. What error do you see when you try to join acs to ad. We might need to fetch adagent logs at the debug level.


Sent from Cisco Technical Support Android App

~Jatin
0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents