Cisco ACS

Discussion in 'Cisco' started by Sharrky, May 25, 2009.

  1. Sharrky

    Sharrky

    Joined:
    May 25, 2009
    Messages:
    2
    Hi

    I have a slight problem with ACS and it's replication time with AD.
    I have set a profile with NAR (network access restrictions) and NAF (network access filters) which allows users to connect to the wireless. The authentication process is integrated back to Active Directory. I have it configured so that users need to be part of a security group in AD before they are able to connect to the wireless. The process in users connecting to the wireless isn't a problem - its working.

    The problem I am having is that if i add a user to the group and then later on decide to remove them or disable their account from AD, they are still able to connect to the wireless for the next 2 hours or so. It takes way too long for ACS to pick up the AD change. However, when adding a user to the security group, it only takes at most 5 minutes to pick up.

    We were (and currently are) using IAS as our RADIUS and its almost instant replication when making changes to user account in AD compared to ACS.

    :damnmate:
     
    Sharrky, May 25, 2009
    #1
    1. Advertising

Want to reply to this thread or ask your own question?

It takes just 2 minutes to sign up (and it's free!). Just click the sign up button to choose a username and then you can ask your own questions on the forum.
Similar Threads
  1. Shireen
    Replies:
    0
    Views:
    2,422
    Shireen
    Sep 10, 2003
  2. Thomas Kuborn
    Replies:
    0
    Views:
    558
    Thomas Kuborn
    Oct 15, 2003
  3. Silvio Arcangeli
    Replies:
    0
    Views:
    2,547
    Silvio Arcangeli
    Oct 20, 2003
  4. Raj
    Replies:
    0
    Views:
    941
  5. Sakirana Karabudak

    Cannot login from ACS Admin -Cisco ACS 3.1

    Sakirana Karabudak, Dec 14, 2009, in forum: Cisco
    Replies:
    5
    Views:
    3,127
    Chino
    Dec 16, 2009
Loading...

Share This Page