Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Create a new article
1058
Views
0
Helpful
1
Comments

ACS 5.3 - AD credentials

steve switzer
Level 1
Level 1

‎05-11-2012 06:33 AM - edited ‎02-21-2020 09:58 PM

Hi All

Apparently you need the following to connect the ACS to the AD Domain -

Add workstations to domain user right in corresponding domain.

Create Computer Objects or Delete Computer Objects permission on corresponding

computers container where ACS machine's account is precreated (created before joining

ACS machine to the domain).

I am being asked by the AD guy why we need this sort of permission

Does anyone Know ?

Steve

Labels:
0 Helpful
Comments
mauzamor
Level 1
Level 1
‎05-11-2012 08:06 AM

Hi,

Those privileges are required because during the ACS-AD integration the ACS must create a Computer account under Domain Computers in AD, this is because for Microsoft AD all the authentication requests must come from a computer, so this ACS computer account is used for that purpose.

This is something that we cannot avoid and you will notice that without those privileges the ACS will not join with AD, you will start getting error messages. Let me know if you need more information.

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents