Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
677
Views
0
Helpful
2
Replies

Fire Power Defense Center External User Authentication - adding / removing users automatic ?

Austin Clark
Level 1
Level 1

‎06-28-2018 12:31 PM - edited ‎02-21-2020 07:55 AM

We are using external authentication with our FMC and it is working correctly. My question is, do the user names get added automatically and removed automatically when they are added to the appropriate active directory group. Or is that process manual. 

 

It seems the addition of the username is automatic. 

Labels:
0 Helpful
2 Replies 2

balaji.bandi
Hall of Fame
Hall of Fame

‎06-28-2018 01:41 PM

As long as Firepower have AD Trust relation, the Device passes the authentication to AD, so they do not stored locally.

 

BB

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

Austin Clark
Level 1
Level 1
In response to balaji.bandi

‎06-29-2018 04:20 AM

I'm talking specifically about the Usernames that I see in the FMC, not the passwords.  How are they added and removed for external users? Can it be automatic, based on what the FMC finds in the AD group?

 

This is for our access control reviews. If the usernames aren't automatically removed from FMC when removed from an AD group, then we must perform some kind of reconciliation report to make sure those usernames are taken out on a regular basis. It seems FMC should query AD periodically????

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card