Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
528
Views
0
Helpful
1
Replies

ACS> User Setup

Go to solution
Praveen Kumar
Level 1
Level 1

‎09-08-2011 10:19 AM - edited ‎03-10-2019 06:23 PM

When the user authenticates in ACS v3.3, a profile is created and stored under User Setup. When the employees leaves the company we have to delete this profile. We use external database which is Active Directory.

Questions

1) If the Active Directory account is deactivated, will the user be able to login because the credentials is saved in ACS?

2) Is there a way to expire these credentials like in 24 or 48hrs?

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Tarik Admani
VIP Alumni
VIP Alumni

‎09-09-2011 12:28 AM

In ACS3.3 you are able to expire the account also if the account is deactivated and the cached user in ACS is pointing to the windows database for authentication this should not allow the user in.

Here is where you can setup how long the account is active for:

http://www.cisco.com/en/US/docs/net_mgmt/cisco_secure_access_control_server_for_windows/3.3/user/guide/u.html#wp273167

Thanks

Tarik

View solution in original post

0 Helpful
1 Reply 1

Go to solution
Tarik Admani
VIP Alumni
VIP Alumni

‎09-09-2011 12:28 AM

In ACS3.3 you are able to expire the account also if the account is deactivated and the cached user in ACS is pointing to the windows database for authentication this should not allow the user in.

Here is where you can setup how long the account is active for:

http://www.cisco.com/en/US/docs/net_mgmt/cisco_secure_access_control_server_for_windows/3.3/user/guide/u.html#wp273167

Thanks

Tarik

0 Helpful
Customers Also Viewed These Support Documents