ACS SE multiple windows databases

Similar Messages

• Cisco Secure ACS 4.1 with Windows Database

  I have ACS 4.1 integrated with Windows Database (check mark in allow Remote DialIn).
  When we terminate a employee do I have to also delete their ACS User Profile?
  If I delete the user in AD will they automatically delete the user in ACS?
  Where can I read more about this?

  Hi,
  If you delete the user in AD, then it would not authenticate the user even if the dynamic mapped user exists in the ACS database, as the password would not be verified from the AD for the user.
  The dynamically mapped user entry would still exist in ACS and would not get deleted if the user is deleted from AD.
  tnx
  somishra

• ACS user authenticating through Windows Database

  Hello,
  Please, i need a document/ guideline on how to configure ACS 4.2 user authenticating through Windows Database and the ACS server is running on an appliance.
  Please, help.
  Regards,
  Ethelbert

  Hi,
  If you delete the user in AD, then it would not authenticate the user even if the dynamic mapped user exists in the ACS database, as the password would not be verified from the AD for the user.
  The dynamically mapped user entry would still exist in ACS and would not get deleted if the user is deleted from AD.
  tnx
  somishra

• Multiple Windows external Databases?

  I want to utilise NAP's si I can authenticate Wireless Users on same server I use for general remote access.
  The General remote users are required to have Windows Dial In Permissions set before they can access the network remotely.
  I need to be able to authenticate the Wireless Users(in-house wireless)but not require they have Dial=-In permission set on their Windows accounts.
  Try to find out if there are any plans to provide this facility in the future?

  can create multiple windows on one page
  Reward points..

• ITunes setup on a NAS with multiple windows users - how?

  iTunes setup on a NAS with multiple windows users?
  I am very confused on what is the best way to handle this setup for my friends family.  Any help would be appreciated.  Sorry in advance as I know this is a long winded post - I have a feeling this will help others faced with the same issues or questions.
  CURRENT SETUP
  I have three new Windows 7 machines networked (two desktops and one laptop) that have four users on each - as busy family with children who need the computers for homework, projects, games, etc...  The goal of this setup is that any user can log onto any computer and have there documents available to them no matter computer was free to use.  I set this up using the library function in Windows 7 and seems to work pretty well.
  I have put a Buffalo Linkstation NAS on the system as well.  This was going to serve two purposes 1)  run some backup software to protect the computers and 2) consolidate the iTunes content in one place for all users.  There is also an iPad in the home that I should would be better served by accessing the content on the NAS without requiring any of the computers being on.  Dave is thinking about getting some other playback devices like Apple TV so thought a NAS would be a good way to go.
  CURRENT ITUNES SETUP - I have created a new iTunes library on the NAS by holding the SHIFT button down while starting iTunes and pointed to that folder on a Share on the NAS.  There was no music on the system at the time as we are planning to copy this over from an OLD machine that is now not being used.  I have also authorized all the computers and turned on the home sharing feature (although I am not sure what good that does).
  This “shift” button trick seesm to also point the default directory there without point to it in the advanced setup tab of iTunes.
  I then synced one of the iPods with purchased content on it and synced that to the library after asking me to do so before an update.  All the content showed up in the library and was playable - awesome.
  I then logged into each user on each machine (yikes) and installed iTunes  and used the “shift” trick to connect each users iTunes to the database on the NAS.  Everything seems to work - but I have not tested it thoroughly.
  SUMMARY
  3 new Windwos 7 networked machines
  4 identical users on each machine
  1 TB Buffalo linkstation
  iTunes setup with the folder on a SHARE
  all user’s itunes connected to the iTunes folder on the NAS
  all computers authorized with home sharing turned on.
  one iTunes user account signed in on each machine
  multiple iPods and one iPad in the system
  QUESTIONS/CONCERNS
  Is there a better way to do this on a NAS?
  Would home sharing be better in some way?
  I understand the NAS should show up under the shared section in iTunes - I assume that would mean that would mean each user has an iTunes library on their documents?
  I have read that there may be corruption issues if users on the different machines try to access iTunes at the same time.
  Will there be any issues syncing that various iPods with?
  Ugh - sorry for the long post and all the questions.  I am just trying to find the best way to do this.  I wish Apple would put out a best practices document for setups like this.  Thanks in advance.

  This is a user to user support forum. Your fellow users can offer solutions or workarounds based on their experience with the application. If you think it should work differently drop a line to iTunes Feedback.
  For reasons unknown Apple haven't chosen to allow iTunes to be suspended in one profile and active in another. My recollection is that this applies even if each profile has a different library, although it is some time since I've committed a personal test.
  I'm not sure why my suggestion make less sense that your current approach?. As I understand it currently everybody is either signed into their own account when they can do something other than work with iTunes, or they sign into the special iTunes account where they can't access any of their other stuff. You don't have to disable fast user switching. Follow exactly the same steps, but make sure everyone closes iTunes before turning the computer over to another user. Disabling fast user switching helps to enforce that action.
  tt2

• Multiple tempdb databases

  Is it possible to create multiple tempdb databases in SQL Server 2012 enterprise edition 64 bit on windows server 2012 data center edition 64 bit.

  Hello,
  You should create 4 or 2 tempdb file per core/processor as explained on the following article:
  http://www.sqlskills.com/blogs/paul/a-sql-server-dba-myth-a-day-1230-tempdb-should-always-have-one-data-file-per-processor-core/
  Hope this helps.
  Regards,
  Alberto Morillo
  SQLCoffee.com

• Can JSP handle multiple windows?

  Hi,
  What I am going to do is:
  I have multiple windows, each has several forms to let the user to set database query conditions. The query result will depends on all the conditions specified in all the forms of all the windows.
  Question:
  Can I use one(or more) .JSP file(s) to handle this situation? if not, could you give me some hints?
  Thanks a lot in advance!
  -Wendy

  I don't know how you will manage to forcefully grab informatoin from a different browser window. The user will have to hit return on each before it can be seen.
  Well unless you put the data into the session as it is being entered. This will likely require some javascript or VB Script. Whatever it is, its going to be nasty. I would onlyy do this as a Masters Thesis experiment :D

• Patch/Reboot of AD servers requires restart of ACS 4.2 Windows Service

  We have been experiencing an ACS issue when our Active Directory servers are patch and rebooted. When this is done, the ACS service must be restarted on both our ACS servers. The ACS servers are Windows 2003 with ACS 4.2. Has anyone else experienced this? If so, any solution?

  The ACS will respond to local database queries fine, it is when it relays it to the active directory cluster that it fails. The ACS servers are on different subnets in different data centers, same with the AD servers. I checked the switch ports and have found no errors and no indication of dupe IP’s. In the ACS logs, is see the fail error as either a “External DB user invalid or bad password” or “External DB unknown error”.

• ACS support Kerberos User Database?

  Hi,
  I've a customer currently having kerberos user database. I proposed to him to implement ACS to enable 802.1x on wireless client. Can ACS support or integrate with Kerberos User Database? If yes, any user guide which list out the steps on doing so?
  I searched through Cisco website but failed to find any info related to the integration of ACS with Kerberos User Database.
  Thank.
  Delon

  For network users who are authenticated by a Windows user database, Cisco Secure ACS supports user-changeable passwords upon password expiration. You can enable this feature in the MS-CHAP Settings and Windows EAP Settings tables on the Windows User Database Configuration page in the External User Databases section.

• ACS External DB - Windows WORKGROUB

  Hi,
  Is it possible to integrate ACS 4.0 SE with external Windows NT WORKGROUB?
  Regards,
  Haitham

  Hi Friend,
  You can certainly integrate the ACS with you windows domain database.
  All you need to do id install the remote agent and do the necessary configuration on the ACS.
  Check out these link for configuration details
  http://www.cisco.com/en/US/products/sw/secursw/ps5338/products_installation_and_configuration_guide_chapter09186a0080193aa0.html
  http://www.cisco.com/univercd/cc/td/doc/product/access/acs_soft/csacsapp/csapp33/user/d.htm#wp37518
  HTH, rate if it does
  Narayan

• Local Users (belongs to domain) on ISE cannot derive Password from Windows Database

  Dear Support Team
  We are in the progress of Migrating ACS4.2 to ISE3355 running 1.1.4. We have SSL VPN Users & Wireless Users to be migrated.
  ISE 1.1.4 is already integrated with AD Windows 2008 and can see all the groups defined on AD.
  1: in ACS 4.x & even 5.x, we have option to add a user locally (users belonging to domain) , and  we can configure user’s password to be derived from Windows Database. It helps to control AAA Policies.
  It also helps to avoid configuring "users" in specific groups on AD and as a result no dependency on System Team to configure users in specific groups, which can be used in policy making on ISE.
  However while doing the same, I could not find an option in ISE 1.1.4. Password cannot be derived from windows database. Password has to be set manually, that clearly means that i have to arrange the users in specific group on AD.
  Is it a platform specific issue or am I missing something ?
  Thanks in advance for your valuable time to look into this issue.
  Ahad....

  It seems that i have to open a TAC case to get cisco official explanation on this feature, it was a nice feature, which has been unnecessarily deprecated.
  Any Inputs from anyone, who has similiar requirement, Please share it here.
  Regards
  Ahad

• Legacy Profile on ACS Unix migrate to ACS 4.2 windows using TACACS+ av-pair

  Hello
  I'm migrating on ACS Unix 2.x ver to ACS 4.2 windows
  we only use TACACS+ protocol
  ACS Unix managed the profile   such as
  group LANadmins{
  service=shell {
  cmd=interface{
  permit "Ethernet *"
  deny "Serial *"
  cmd=aaa{
  deny ".*"
  cmd=tacacs-server{
  deny ".*"
  default cmd=permit
  those things. 
  So, I' guessing That above syntex is similar to TACACS+ av-pairs
  and I found TACACS+ av-pairs list. but I couldn't find out examples .
  those are only shown the List   and no examples.
  Does anybody help me ?
  Thanks

  I've been researching the differences between 4.2 and 5.4. There is a fundemental difference in the two. In my research, I have not found anything that Cisco indicates that log files can be imported. Because ACS 5.4 has it's own robust logging and database viewing tools, I'm leaning towards no. But I cannot give a definitive answer on this, sorry. Just know that I've read for several hours, and have not seen anything that talks about the importation of logging files. You can import users, mac addresses, etc. This may be something someone knows and will post eventually; probably need to call "The Cisco" and get a quicker answer.

• Is there a way to open multiple windows in firefox 5.0? I can't do it from windows quicklaunch and the right click"open in new window" does nothing.

  Yeah, not much more to say. Since I upgraded to firefox 5.0, I can no longer open multiple windows. Multiple tabs work, but I don't like tabs. Please help.

  Start Firefox in <u>[[Safe Mode]]</u> to check if one of the extensions is causing the problem (switch to the DEFAULT theme: Firefox (Tools) > Add-ons > Appearance/Themes).
  *Don't make any changes on the Safe mode start window.
  *https://support.mozilla.com/kb/Safe+Mode
  *https://support.mozilla.com/kb/Troubleshooting+extensions+and+themes

• How can I have multiple WINDOWS (NOT tabs) with INDEPENDENT content?

  How can I have multiple '''windows''' (''not ''tabs) with '''independent''' content?
  I used to be able to open separate windows with Firefox, and the content could be completely different in each window. No matter what I did in any window, no OTHER window open at the time, nor any of the content therein, was affected. This is no longer the case and it is extremely frustrating for me.
  I do ''not ''like tabs and do not use them. I prefer multiple windows plus I am so used to using them, for so many years now! But with v9.0.1 I suddenly can no longer do what I've always done with my browser without this aggravating problem constantly reminding me that I can't have what I want in firefox anymore.
  Or can I? Does anyone have a solution I don't realize exists?
  Thanks,
  Sowelu

  AppleScriptObjC can use pretty much everything in the Cocoa API, so yes, it is possible.
  Note that a view is not the same as a window, and a window can have multiple views. There are also many ways to implement "tabs";  take a look at some of Apple's applications - they use various mixtures of toolbars, checkboxes, and radio buttons, for example.  An application such as this will be a lot more involved than what you have done so far though, using custom classes and subclassing existing ones, so be prepared to do a lot of reading and researching.

• How can I switch between multiple windows of the same application (e.g. Safari) over several desktops ?

  Hi All,
  I have one application, for example safari, open and running with multiple windows (with or without tabs) spread over several desktops.
  How can I switch between the windows only via keyboard? CMD+> and CMD+< let me only swicht between windows open on the one desktop I am currently looking at.
  thanks for your replies,
  equi

  Barney,
  many thanks for your efforts and your time (preparing and posting the screenshot, answering to this question,...).
  Unfortunately, moving the focus to the next window only works with windows on the same desktop.
  btw, using a german keyboard layout and german language settings the shortcut is "cmd+<".
  I can switch with this shortcut between different windows of my Safari which reside on the same desktop, but I cannot swith between different safari windows distributed over several desktops.
  Thanks,
  equi