Connecting LMS 4.0 to multiple AD domains for authentication

adriannims · ‎03-31-2011

Hello,

I am trying to connect my Ciscoworks servers to AD for users authentication. That works fine.

The problem I am having though, is my users are from multiple AD domains in my company.

How can I connect my LMS 4.0 (running on Solaris) to multiple AD domains so that all users can conect to their respective AD domains?

Any help will be highly appreciated. Thanks!

Adrian

Nael Mohammad · ‎04-01-2011

As far as I know, only one AD is supported in LMS but you can configure more than one useroot separated by semicolon ";".

http://www.cisco.com/en/US/docs/net_mgmt/ciscoworks_lan_management_solution/4.0/user/guide/admin/security.html#wp1056105

adriannims · ‎04-04-2011

Does Ciscoworks LMS 4.0 support binding to Global Catalogs? If yes, I would be able to connect it to multiple AD domains.

Nael Mohammad · ‎04-08-2011

Start a new thread for this but according to technet, if you define the UPN suffix, it should search the global catalog. I've never tried it but you can attempt to configure it so long as you know the UPN suffix.

User logon: In a multidomain forest, domain controllers must contact a global catalog server to retrieve any SIDs of universal groups that the user is a member of. Additionally, if the user specifies a logon name in the form of a UPN, the domain controller contacts a global catalog server to retrieve the domain of the user.

http://technet.microsoft.com/en-us/library/how-global-catalog-servers-work%28WS.10%29.aspx