Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1539
Views
0
Helpful
5
Replies

FMC Realm configuration

Go to solution
pavan2
Level 1
Level 1

‎02-17-2021 11:00 AM

Dear Community ,

 

My doubt is in regard to Realm configuration change, where i want to update AD password of the directory.

 

When the password is updated

1)Does it effect the existing AnyConnect VPN users by disconnecting the connections or the users will have no impact while we update password.

2) once after the password update, is it necessary to download the users and groups manually instead of waiting for the schedule to download it.

Thanks

Pavan

0 Helpful
2 Accepted Solutions

Accepted Solutions

Go to solution
balaji.bandi
Hall of Fame
Hall of Fame

‎02-17-2021 11:23 AM

As long as FMC able to connect to AD and able to pull the user information, I do not see any issue.

But do it in a maintenance window, where there is low traffic of VPN users connecting timings (to be safe)

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

View solution in original post

0 Helpful

Go to solution
balaji.bandi
Hall of Fame
Hall of Fame

‎02-17-2021 03:59 PM

I do not believe that they do, but we need to consider change over time - how quickly you doing both sides and push the changes.

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

View solution in original post

0 Helpful
5 Replies 5

Go to solution
balaji.bandi
Hall of Fame
Hall of Fame

‎02-17-2021 11:23 AM

As long as FMC able to connect to AD and able to pull the user information, I do not see any issue.

But do it in a maintenance window, where there is low traffic of VPN users connecting timings (to be safe)

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

Go to solution
pavan2
Level 1
Level 1
In response to balaji.bandi

‎02-17-2021 11:32 AM

Thank you balaji!

Does the users whoever connected prior activity gets disconnected when i perform password update ?

 

0 Helpful

Go to solution
balaji.bandi
Hall of Fame
Hall of Fame

‎02-17-2021 03:59 PM

I do not believe that they do, but we need to consider change over time - how quickly you doing both sides and push the changes.

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

Go to solution
pavan2
Level 1
Level 1

‎02-17-2021 04:25 PM

Thanks Balaji

My understanding is that,

the users and groups will be downloaded on timely basis based on the scheduled time in user download and in the mean time we change password, the existing database should keep the connections working and also even allow new connections as its already has downloaded the users and groups. When the password is changed and we manually download the users and groups, our plan is to disconnect the test VPN user and reconnect again to confirm everything is working fine.

 

I will keep  posted on how the change goes.

 

0 Helpful

Go to solution
balaji.bandi
Hall of Fame
Hall of Fame
In response to pavan2

‎02-17-2021 04:44 PM

Sure sounds like a good plan (post-testing for the change).

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card