8-51
User Guide for Cisco Secure Access Control System 5.4
OL-26225-01
Chapter8 Managing Users and I dentity Stores
Managing External Identity Stores
Save Changes to save the configuration.
Discard Changes to discard all changes.
If AD is already configured and you want to delete it, clic k Clear Configuration after you verify
the following:
There are no policy rules that use custom conditions based on the AD dictionary.
The AD is not chosen as the identity source in any of the available access services.
There are no identity store sequences with the AD.
The Active Directory configuration is saved. The Active Directory page appear s with the new
configuration.
Note The Centrify configuration is affected (and sometimes gets disconnect ed) when there is a slow response
from the server while you test the ACS connection with the AD domain. However the configuration
works fine with the other applications.
Note Due to NETBIOS limitations, ACS hostnames must contain less than or equal to 15 characters.
Joining Nodes to an AD Domain
To join a single node or multiple nodes to an AD Domain, complete the following steps:
Step1 Select Users and Identity Stores > External Identity Stores > Active Directory.
The Active Directory page appears.
Step2 Select a single node or multiple nodes and click Join/Test Connection.
The Join/Test Connection page appears.
Step3 Complete the fields in the Join/Test Connection page as described in Table 8 -11.