Cisco 2509 - Router - EN User Manual page 423

User guide
Hide thumbs Also See for 2509 - Router - EN:
Table of Contents

Advertisement

Chapter 11
Working with User Databases
If you are creating a configuration, follow these steps:
Step 4
a.
b.
c.
Step 5
Click Configure.
Result: The Windows NT/2000 User Database Configuration page appears.
To restrict network access to users who have Windows dialin permission, select
Step 6
the Grant dialin permission to user check box.
Note
If you want Cisco Secure ACS to authenticate explicitly using each trusted
Step 7
Windows domain for usernames that are not domain-qualified, select the domains
you want Cisco Secure ACS to use to authenticate unqualified usernames in the
Available Domains list and move them to the Domain List list by clicking —>.
Note
Caution
If your Domain List contains domains and your Windows SAM or Active
Directory user databases are configured to lock out users after a number of failed
attempts, users can be inadvertently locked out because Cisco Secure ACS tries
each domain in the Domain List explicitly, resulting in failed attempts for
identical usernames that reside in different domains.
78-14696-01, Version 3.1
Click Create New Configuration.
Type a name for the new configuration for Windows NT/2000 authentication
in the box provided, or accept the default name in the box.
Click Submit.
Result: Cisco Secure ACS lists the new configuration in the External User
Database Configuration table.
Windows dialin permission is enabled in the Dialin section of user
properties in Windows NT and on the Dial-In tab of the user properties in
Windows 2000.
Configuring the Domain List list is optional. For more information about
the Domain List, see
User Guide for Cisco Secure ACS for Windows Server
Windows NT/2000 User Database
Windows Authentication, page
11-11.
11-15

Advertisement

Table of Contents
loading

This manual is also suitable for:

Secure acs

Table of Contents