Hi Mark, Since I haven't seen a response yet, I'll give you my two cents. Although I have not configured Cisco ACS to authenticate against Active Directory, I have managed to configure Cisco VPN concentrators to do so at a prior company. My suggestion to you is to contact the Cisco TAC ( It's a free call if you have a support agreement ), although they may suggest that you use a Radius server instead, or you could just install Microsoft Internet Authentication services, Radius on your AD controller and that would do the same thing for you.
Peace, Jose ---------------------------------------- -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Creamer, Mark Sent: Monday, September 12, 2005 8:41 AM To: [EMAIL PROTECTED] Subject: [ActiveDir] Cisco ACS and GC configuration I'd like to be able to point our Cisco ACS server to our global catalogs to authenticate users (LDAP config rather than Windows). Is anyone on the list using this configuration that could help me figure out what to enter into the various fields? One question in particular...it wants to know the users container and groups container. If I was using port 389, and a single domain, I would probably enter CN=Users there. But what is the container entry for users and groups when I'm pointing to a GC? I have several domains with users in the same forest, so a GC makes sense here (I think). J Thanks as always, Mark Creamer Systems Engineer Cintas Corporation List info : http://www.activedir.org/List.aspx List FAQ : http://www.activedir.org/ListFAQ.aspx List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
