10-09-2009 01:41 AM - edited 03-10-2019 04:43 PM
Hello,
we have a new Windows ACS Server with external user database authentication. Users at the ACS Server were configured, disabled, enabled and deleted by RDBMS synchronization with account actions.
We have the problem that a user could be authenticated through the external LDAP even though if the user or his group is disabled inside the Windows ACS Server.
The same procedure doesn't work with our ACS appliance where user administration is done only through the webinterface .
Does anybody know a solution for this problem?
Best regards
Torsten Waibel
10-13-2009 12:14 AM
Could it be you have unknown user authentication enabled?
If you did, and a username came through authentication in a different format to one one added via dbsync... eg user@domain or domain\user the unknown user policy might legitimately think its a different user. In which case it would depend on what group mapping had been setup.
Just a thought.
03-03-2010 02:34 AM
Hello darpotter,
finally we have fixed the problem. it was a lyer 8 one ;-)
Best regards
Torsten
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide