Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1315
Views
5
Helpful
2
Replies

ACS 5.2 and External Identity AD User

marian_15
Level 1
Level 1

‎07-12-2011 06:39 PM - edited ‎03-10-2019 06:13 PM

Hi,

We are using ACS 5.2 and we are trying to create a Microsoft Active Directory (AD) Identity Store. We have a user to be used in the Active Directory creation General page and we would like to know how the test communication / ACS to AD communication takes place.

Our user is a predefined user in AD and has admin rights, but the password expires every 60 days. Will this affect the communication between AD and ACS 5.2 at everytime the entered user's password expires? Do we always have to change the password in the External Identity store everytime the password expires?

Marian

Labels:
0 Helpful
2 Replies 2

Nicolas Darchis
Cisco Employee
Cisco Employee

‎07-13-2011 12:00 AM

Yes, if the ACS admin user password expires, you're killing the ACS-AD communication. The doc says that the ACS password should never expire, otherwise you have to remodify it constantly.

marian_15
Level 1
Level 1
In response to Nicolas Darchis

‎07-14-2011 01:52 AM

Thanks for this Nicolas!

0 Helpful
Customers Also Viewed These Support Documents