cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
520
Views
0
Helpful
1
Replies

Is Context Directory Agent required now for Prime Security Manager?

newtonpara
Level 1
Level 1

I am setting up the Cisco Prime Security manager. I want to integrate it with AD agent so I can do Ip to user mapping. I am finding that the AD agent is retired and now Cisco says to use Context Directory Agent. Is there any other way of integrating AD with the CX module?

I wanted to know before starting a lengthy install.

 

I know Context Directory Agent is used for other things. 

1 Accepted Solution

Accepted Solutions

Marvin Rhoads
Hall of Fame
Hall of Fame

CDA is the integration proxy between CX module services and AD.

Without it, you cannot use identity-based services passively (no user input required). You would instead need to have users prompted to provide their authentication actively to the firewall (which can in turn ask AD, LDAP etc. for authentication) in order to map their IP address to their identity.

Reference.

View solution in original post

1 Reply 1

Marvin Rhoads
Hall of Fame
Hall of Fame

CDA is the integration proxy between CX module services and AD.

Without it, you cannot use identity-based services passively (no user input required). You would instead need to have users prompted to provide their authentication actively to the firewall (which can in turn ask AD, LDAP etc. for authentication) in order to map their IP address to their identity.

Reference.

Review Cisco Networking for a $25 gift card