07-09-2021 07:54 AM
good day
we had setup a Realm Config for A.D. <-> FMC sync....and i'm a bit unsure whether the 'svc-acct' that was made in AD actually 'needs' to be a Domain Admin member....or whether a bare minimum other Acct Privileges should be set instead.
if anyone can point to a document stating min. A.D group membership for Realm Sync, that'd be great.... thnx
Ed
Solved! Go to Solution.
07-09-2021 01:30 PM
"For Microsoft Active Directory, the user does not need elevated privileges. You can specify any user in the domain."
This is an exact quote per the Firepower Management Center Configuration Guide. Page 2422 in the version 7.0 PDF. (Requirements are the same in any release though.) It's in the section "Realm Fields" in the "Discovery and Identity" chapter.
07-09-2021 01:30 PM
"For Microsoft Active Directory, the user does not need elevated privileges. You can specify any user in the domain."
This is an exact quote per the Firepower Management Center Configuration Guide. Page 2422 in the version 7.0 PDF. (Requirements are the same in any release though.) It's in the section "Realm Fields" in the "Discovery and Identity" chapter.
07-09-2021 02:19 PM
Thanks Marvin.....you da (unheralded) man !!! LoL
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: