Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
We have a fairly new CUCM installation (10.5.1.10000-7) with a 2951 gateway (running IOS 15.2(4)M6a with one trunk group with two T1/PRI's. I am trying to setup a translation (or maybe transformation, whichever is appropriate) to translate an incomi...
I am trying to upgrade from a production ACS 4.2 installation that utilizes the Windows server that the ACS is installed on as the underlying authentication mechanism to ACS 5.2 that now joins to the domain. I have read several posts and haven't yet...
We are deploying ACS 5.2 to replace our ACS 4.2 in production. I have two wireless networks setup as WPA2-Enterprise. One points at the ACS 4.2 and the other at the ACS 5.2. Both use the same SSL certificate with the same CN. Both authenticate Wi...
I can logon to the ACS CLI and ping/nslookup the FQDN of domain x just fine. It doesn't authenticate the username@domainx either. I tried @FQDN and @domainx.
Tarik,As of Friday, we now have a two-way external trust between our two domains. So, I joined the ACS server to the Domain Y. I can now authenticate users for Domain Y with DomainY\username or just username. However, when I try to authenticate us...
No worries Tarik. I thought I had also replied and then checked and it wasn't there. Maybe the site messed up.Anyway, thanks for the information. I will let you know if I need assistance in setting this up. Is there a document that you would reco...
Actually, the way it was explained to me is that selective authentication would be used to allow or disallow authentication based on a group/OU. So, if you are not in a certain group/OU, then you cannot even try to authenticate.Thanks!Jodie
So, I am working on getting that two-way external trust setup. I think they understand why it is needed. But, of course, we have to go through the politics of actually getting it approved.As for the VPN connection, this is for dot1x authentication ...
