Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
513
Views
0
Helpful
1
Replies

Authenticating against AD

eir-dialint
Level 1
Level 1

‎05-08-2007 04:35 AM - edited ‎03-10-2019 03:08 PM

Hi,

Currently I have users authenticating against RSA Ace server, but going via ACS 4.0's external database policy. Also have dialup users authenticating against the ACS internal database with CLI restrictions. My intention is to move the users using the internal database to authenticate against Active Directory. However ACS is in a management DMZ and being firewalled off isn't a member server of the Active Directoy domain. Unfortunately I can't take it out of the DMZ. Is it neccesary for the ACS server to be a member server of Active Directory? Most documentation I have seen suggests it is...

Regards,

RS.

Labels:
0 Helpful
1 Reply 1

Jon Marshall
Hall of Fame
Hall of Fame

‎05-09-2007 09:51 AM

Hi

As far as i am aware yes it does need to be a member of the AD domain to be able to query the AD database.

If you had an internal ACS server you could proxy the request from your DMZ which would alleviate some of the issues.

HTH

Jon

0 Helpful
Customers Also Viewed These Support Documents