Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
650
Views
0
Helpful
1
Replies

WSA User moving from one policy to another

mohamed fayz
Level 1
Level 1

‎08-24-2013 09:45 AM

Hai ,

Can anybody faced this issue before??

We have 2 WSA s670 running in explicit model using Load Balancer.

We created access policies for different categories & integrated with AD groups also. Now, if i need to move a user from one group  in AD to another, it is not reflecting very soon and taking almost 6-7 hours. the surrogation timeout is set to default value as well.

Also, If we use Cisco CDA is there any way to fix this issue?? In document it seems CDA is used only for user to IP mapping only!!! Please suggest.

Regards,

Mohamed fayz

Labels:
0 Helpful
1 Reply 1

Vance Kwan
Cisco Employee
Cisco Employee

‎08-27-2013 11:58 PM

Hi Mohamed,

CDA will not resolve the issue.  I haven't tested this myself, but I have heard that if you make a change in the authentication realm, and submit/commit the changes, it will restart the authentication service, which will trigger the refresh of AD user groups.

-Vance

0 Helpful
Customers Also Viewed These Support Documents