ACS and Microsoft AD

Similar Messages

• Cisco Secure ACS and Windows NLB

  Hi,
  I have two ACS servers and have been trying unsuccessfully to setup Windows NLB for them. I can successful setup the NLB but ACS won't respond on the clustered IP. Other services running on the clustered IP will respond so I believe the NLB is working correctly.
  Has anyone had any success with ACS and Microsoft NLB? I can?t find any documentation to suggest that they are incompatible but I think this may be the case.
  Thanks,
  Neil

  Neil,
  ACS is not tested with NLB but if cluster hosts are attempting to communicate with the ACS using their clustered IP then ACS should reply.
  Do you see any hits on acs ? If you sniff the acs interface, what is the source IP address ? Is it clustered ip or clustered host IP ??
  Also on acs --->Network configuration add aaa client with host IP and clustered ip . Now see if acs responds to NLB.
  Regards,
  ~JG

• ACS 5.2 and Microsoft AD authentication to IOS

  I am looking for documentaion on implimenting ACS and MS., active directory for authentication to IOS (switches and routers) devices.
  I would like to authenticate with AD, then if not possible local ACS database.

  Please check this link. I believe it covers just what you're asking about.
  More details for setting up your TACACS server with MS AD are in the ACS User Guide here.

• ACS and Windows 2000 user database communication port

  Could my Windows 2000 SP4 + ACS v3.23 can install any new Windows 2000 service pack ?
  I'm affraid to infect ACS Service.
  So, I want to install firewall on this server to block malicious traffic.
  However, my ACS used external user database Windows 2000 for authentication.
  Who can tell me What protocols or port list they are communication?
  I have to avoid these traffic on my firewall.

  Hi cheng
  I think you can install any servie pack without problem and the SP4 is the latest one for WIN2000 and you server already has this SP
  For your second question you need to specify many protocols according to your active directory config in this link you can find a list of this protocols and the best way is to make debug or logging or use a siniffer to know the exactly protocols flow between your ACS and AD server
  http://www.microsoft.com/technet/prodtechnol/windows2000serv/technologies/activedirectory/deploy/confeat/adrepfir.mspx
  Best Regards

• Cisco NAC and Microsoft NAP

  Dear all,
  I need to know what are the differences between Cisco NAC and Microsoft NAP ?
  Can NAP be used instead of NAC or not ? why ? why not ?

  I really do not know if you will find the answer that you are looking for. From what I remember NAP was an option that was available with the ACS via a special patch. This is only supported for vista clients if memory serves me correct.
  Here is the link that will help you with the basics.
  http://www.cisco.com/en/US/netsol/ns466/index.html
  We do not get much case volume or exposure to the NAP solution and with ACS 5.2 and ISE around the corner it might be too late to go through this setup and then run into issues with acs 4.2 possibly hitting eol/eos.
  Thanks,
  Tarik

• Lost connection between ACS and AD

  Hi
  I'm having a trouble with authentication to my WLAN. We are running a solution with LEAP and ACS 3.0 which gets it's users from our Active Directory. During the summer our ACS-servers seems to have lost the AD-connection and I'm no longer able to EAP-authenticate. All I get in the ACS is "Radius extension DLL rejected user".
  The AD and the ACS are on the same network but not on the same machine. I can log in if I add a local user in the ACS. I've also tried to empty my cached user database in the ACS but to no avail.
  One theory of mine is that it has something to do with a couple och hotfixes that Microsoft released in the middle of July.
  T.I.A
  /Tommy

  Hi
  Thanks for your replies. An update on the issue:
  I've gone through the issues in the suggestion made by cisco in the link:
  http://www.cisco.com/en/US/products/sw/secursw/ps2086/products_field_notice09186a00800b1583.shtml
  but to no avail.
  At first we could se an error in the eventlog stating that the user didn't have sufficient rights but it disapeared when we created an account and ran the ACS-services via it.
  After that we tried to set up a local user in the ACS and it works like a charm even then the AD-accounts can't connect.
  We also tried to remove the hotfixes released by Microsoft but still nothing.
  Right now it seems as if the AD authenticates the user correctly but then the ACS says no. Here's the eventlog and the corresponding ACS-log.
  NT
  AUTH 08/19/2004 08:20:27 I 0266 1524 External DB [NTAuthenDLL.dll]: Starting MSCHAP authentication for user [LINEDU\gustomedu]
  AUTH 08/19/2004 08:20:27 I 0266 1524 External DB [NTAuthenDLL.dll]: Attempting NT/2000 authentication
  AUTH 08/19/2004 08:20:27 I 0266 1524 External DB [NTAuthenDLL.dll]: NT/2000 authentication SUCCESSFUL (by METIS)
  AUTH 08/19/2004 08:20:27 E 0266 1524 External DB [NTAuthenDLL.dll]: LookupAccountSidA failed
  ACS
  08/19/2004 08:20:27 Authen failed LINEDU\gustomedu Default Group 000a8aa291a8 Radius extension DLL rejected user .. .. 37 148.136.120.30
  The status right now is that it is working as long as we restart the ACS-server once a day.
  Tommy

• I use Windows Vista and Microsoft Outlook. After migrating to iCloud, the calendar of iCloud tranferred only part of my past Calendar items to the folder iCloud Calendar in my Outlook. How can I transfer all the entries?

  I use Windows Vista and Microsoft Outlook. After migrating to iCloud, the calendar of iCloud tranferred only part of my past Calendar items to the folder iCloud Calendar in my Outlook. How can I transfer all the entries? In iCloud's site all are there.

  If the calendar is on iCoud.com, all you would need to do to get it on your phone is go to Settings>iCloud on your phone, sign into your iCoud account and turn Calendars on.  The iCloud calendars will then download to your phone.

• MAJOR PROBLEMS WITH IPHONE 3G AND MICROSOFT EXCHANGE!!!! PLEASE HELP!!!!

  Ok,
  My exchange server at work was synced to my iphone and has worked with no issues. I then exchanged my phone because there were issues with my bluetooth not syncing properly. So with this new phone, it prompts me to enter in my exchange server password every few days. I contacted my IT department as well and microsoft to get this issue resolved because I assume that there were issues with the exchange server. They were both able to see an event viewer and it showed that my iphone was attempting to log in numerous amounts of times, which locks out my account after 3 incorrect log ins. Even when I erased the exchange account from my phone, it still showed that the phone in the event viewer was trying to log in over and over again. I then did a master clear and restore and the process was removed in the event viewer. So then I called my IT department to unlock my account after I cleared everything. I was able to sync everything again with it working properly. Now its a day later and the my exchanger server prompts me to enter in the password AGAIN and my exchange account is locked AGAIN because the event viewer at work is showing the same issues. Is my Iphone not saving the password correctly? What do I do? My IT department even created a dummy account to see if a new account would fix the issues but yet no cigar! HELP!!

  The iPhone you returned is still syncing against your server and locking out your account. Someone possibly has access to your mail data. I'd recommend having your Exchange Administrator install the Microsoft Exchange Server ActiveSync Web Administration Tool (http://www.microsoft.com/downloads/details.aspx?FamilyID=E6851D23-D145-4DBF-A2CC -E0B4C6301453&displaylang=en) and attempt to wipe/delete/block that other iPhone.
  Message was edited by: ethanm

• I have updated to ios 7 and Microsoft outlook web access for work emails no longer works nor my remote access can you help

  I have updated to ios 7 and Microsoft outlook web access for work emails no longer works nor my remote access can you help

  This happened to me as well. I read somewhere else that resetting the network settings (General, Reset, Reset Network Settings) would help and it partially did. I get half (the folders) of the Web Access screen rather than a blank screen. I tried tihs a few more times and got the right half (the messages) on occasion but never the whole web page.

• WIN 8.1 and MICROSOFT LIFECAM HD-3000 compatibilty - Preview screen "blacked-out"

  It seems that there are hundreds of Users with Webcam issues since WIN 8.1 has been downloaded. I have trawled sites and Forums for procedures to ensure that my LIFECAM HD-3000 will work otherwise it a waste of £14.99. No solution has worked. Drivers and
  software have been re-loaded from official MS site, and/or Safe Starts undertaken, and/or uninstalling and then re-installing and nothing works.
  I think that the problem is that the CAMERA APP built-in with WINS 8 or 8.1 is "always on" in the background and stops other programs/programmes using the webcam output. Is one definitive answer to get webcams working in WINS8.1. Even the MANYCAM
  software fails to work with WIN8.1.
  Help. Thank you.

  Hi,
  This could be driver issue. Please contact the manufacturer to ask for the latest driver for your Webcam in Windows 8.1, and reinstall it to check the results. If there is not, we need wait for the updates from manufacturer.
  Meanwhile, to use webcam, we need to get it properly set.
  Set Windows 8.1 Apps that May Use the Webcam, Microphone & other devices
  http://www.7tutorials.com/set-windows-81-apps-may-use-webcam-microphone-other-devices
  This response contains a reference to a third party World Wide Web site. Microsoft is providing this information as a convenience to you. Microsoft does not control these sites and has not tested any software or information found on these sites; therefore,
  Microsoft cannot make any representations regarding the quality, safety, or suitability of any software or information found there. There are inherent dangers in the use of any software found on the Internet, and Microsoft cautions you to make sure that you
  completely understand the risk before retrieving any software from the Internet.
  Hope these could be helpful.
  Kate Li
  TechNet Community Support

• Windows 7 on Bootcamp I am locked into a DOS screen and it is not installing.  I have been on line with Apple and microsoft and they can't help.  I have lated versions of Lion and bootcamp. HELP

  I ran bootcamp and tried to install Windows 7.  I end up with a DOS screen and an unresponsive keyboard. 
  I have been on line with Apple and microsoft and they can't help.  I have lated versions of Lion and bootcamp. HELP!
  My Lion is up to date.
  I used the 64-bit windows disc.
  Should I try parallels?

  Do you have a DOS screen with a command prompt or just a blank screen?
  Is your Windows 7 x64 an original MS Full Version Installation DVD?
  Did Windows 7 Install Disc start?
  If it did you would have had to choose the location of where to install Windows 7.
  Did you select the Partition named BOOTCAMP that corresponded to the Partition Size you created in BootCamp?
  Were you asked to format the Partition?
  Did you format the partition to NTFS and then get an option to click NEXT and actually start the Windows 7 installation?
  Do you have a wired USB keyboard and wired USB mouse?
  If you actual went through the installation and restarted then here are some things to try:
  First try doing a CONTROL-ALT-DELETE and see if a Windows Option Screen appears.
  If you get the Screen you will have some options displayed.
  You want to highlight and click TASK MANAGER which should be the bottom choice I beleive.
  If Task Manager runs you will get a window showing all the processes running.
  See if you can find EXPLORER.
  If EXPLORER is running highlight it and go to the bottom right and click the END TASK button.
  Now go to the Top Left Menu Bar.
  Click FILE
  In the sub menu that opens select RUN  or RUN NEW TASK (Not sure which it is in Windoes 7 as I am running Windows 8)
  Once RUN is selected a new window will open to CREATE NEW TASK
  Type in EXPLORER and then the OK button.
  If Windows 7 installed properly the Desktop should appear after a bit of time.
  Your first concern is to get your keyboard running so you may have to remove and reinstall Windows using Boot Camp on the Mac Side.
  Let us know how it goes..

• I am using a verizon email address and microsoft office for mac outlook program to manage my emails.   Does any one know if  the apple outlook version offers the ability to save emails as a pdf so that I can save it to my hard drive and how to access?

  I am using a verizon email address and microsoft office for mac outlook program to manage my emails.   Does any one know if  the apple outlook version offers the ability to save emails as a pdf so that I can save it to my hard drive and how to access?

  This is the Microsoft forum site that parallels what Apple has:
  Office for Mac forums
  It's not uncommon for MS employees who work with the Mac side of the business to help there. All in all a useful resource for Office:Mac

• I kept a dual boot of windows 7 and mac os x lion in macbook pro. so, should i keep antivirus for windows 7? which is prescribable between bit defender(bd) and microsoft security essentials(mse)?does bd and mse un-installs easily?

  i kept a dual boot of windows 7 and mac os x lion in macbook pro. so, should i keep antivirus for windows 7? which is prescribable between bit defender(bd) and microsoft security essentials(mse)?does bd and mse un-installs easily?

  lower your font size unless you have difficulty
  MS Security Essentials is excellent
  Then again maybe time to investigate Windows 8 RP (which uses Defender)

• Integration of sap R/3 (4.7) and Microsoft active directory (2003)

  Hi All,
  I would like to know integration of sap R/3 (4.7) and Microsoft active directory (2003) and also SAP EP and Microsoft active directory. I have been working as a ep consultant with a local bank. I am new for this integration work, So please kindly provide me the steps for integrating these both directories.
  Pls help me with this issue.
  Thanks in advance,
  Regards,
  Raghav.

  Hi,
  First You should read:
  https://www.sdn.sap.com/irj/sdn/go/portal/prtroot/docs/library/uuid/bc72b890-0201-0010-3a8d-e31e3e266893
  Regards,
  Jarek

• Hi I've just upgraded from Snow Leopard to Mountain Lion now Quarkxpress 6.5, Adobe creative suite CS2, Adobe Acrobat 7.0 professional and Microsoft Office 2004 will nolonger open. Can anyone please advise me what I can do to get these programs running.

  Hi I've just upgraded my MacBook Pro from Snow Leopard to Mountain Lion. Now my installed programs:- Quarkxpress 6.5 - Adobe creative suite CS2 - Adobe Acrobat 7.0 professional and Microsoft Office 2004 will not open - I get a banner saying not supported by power mac. Can anyone please help me I really need these programs for my work. Thank you!

  hi tuggerose
  i think it is bad new for you. if it's any consilation i went through the same thing when i loaded mountain lion when it first came out. i think the problem is that mountain lion is a pure 64bit operating system and the software you have is 32bit. earlier os's were able to emulate 32bit but the new system does not. the answer is new software. i did it and it cost me a load of money and much angst so your not alone.