Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
669
Views
0
Helpful
1
Replies

Cisco ACS LDAP support

dpatkins
Level 1
Level 1

‎06-09-2009 07:52 AM - edited ‎03-10-2019 04:31 PM

Does Cisco ACS support the search scope functionality? We are trying to get ACS to go to a specific container and if the user is not found there, to search the OUs in the structure to see if it is there.

Thank you,

Dwane

Labels:
0 Helpful
1 Reply 1

dpatkins
Level 1
Level 1

‎06-17-2009 01:04 PM

I should clarify this. I am trying to use Cisco ACS 4.2, generic LDAP and Active Directory. My issue is that I can actually create the OU=mygroup,DC=Windows,DC=mydomain,DC=edu. I can authenticate just fine using the test aaa-server option on an ASA. What I would like to be able to do is use a wildcard in the OU so it will search through the windows.mydomain.edu structure to find the users that have these generic LDAP attributes:

User Directory Subtree - OU=mygroup,DC=Windows,DC=mydomain,DC=edu

Group Directory Subtree - DC=Windows,DC=mydomain,DC=edu

UserObjectType - sAMAcountName

UserObjectClass - person

GroupObjectType - cn

GroupObjectClass - group

Group Attribute Name - memberof

Basically what I would like is for it to look at the group subtree and search all the sAMAccountNames in each group in the entire structure.

Am I on the right track? I have been working on this for quite a while and I am in by no means a LDAP expert. I am not sure if I have hte correct Common LDAP Configuration for AD, but I am sure that it is pretty standard across the board.

Thank you for your help.

Dwane

0 Helpful
Customers Also Viewed These Support Documents