04-30-2012 08:54 AM - editado 03-12-2019 05:40 PM
Hi All
I have just been tasked with setting up the ACS 5.3 and am having
a few problems getting things started.
Here is a question from my server team -
ACS specifies an account to join the machine to the domain. Will this account then be the account that it communicates to AD on once it has joined the domain or is there somewhere we need to put AD credentials for LDAP lookup? Our AD administrator is happy to join it the domain but does not want ACS then running under his account”
In other words we dont want to use an admin account but surely
we only need an ordinary account that reads ad for authentication ?
Can anyone clear this one up ?
Steve
em 05-02-2012 12:50 AM
Here are the account guidelines for joining ACS to AD, Once ACS joins to AD it will authenticate users through the workstation account that is created when its joined. The only time the ACS needs the credentials of the account is when the box joins to AD.
www.cisco.com/en/US/docs/net_mgmt/cisco_secure_access_control_system/5.3/user/guide/users_id_stores.html#wp1140906
Thanks,
Tarik Admani
em 05-02-2012 08:13 AM
Thanks Tarik
Descubra e salve suas ideias favoritas. Volte para ver respostas de especialistas, passo a passo, tópicos recentes e muito mais.
Novo por aqui? Comece com estas dicas. Como usar a Comunidade Guia do novo membro