CHAPT ER
11-1
Cisco Secure ACS 3.0 for Windows 2000/NT Servers User Guide
78-13751-01, Version 3.0
11
Working with User Databases
Cisco Secure Access Control Server for Windows NT/2000 Servers Version 3.0
(Cisco Secure ACS) authenticates users against one of several possible databases,
including its internal database. You can configure CiscoSecure ACS to
authenticate users with more than one type of database. This flexibility enables
you to use user accounts data collected in different locations without having to
explicitly import the users from each external user database into the CiscoSecure
user database. It also enables you to apply different databases to different types of
users, depending on the security requirements associated with user authorizations
on your network. For example, a common configuration is to use a Windows
2000/NT user database for standard network users and a token server for network
administrators.
This chapter contains the following sections:
CiscoSecure User Database, page 11-2
About External User Databases, page 11-4
Windows NT/2000 User Database, page11-6
Generic LDAP, page11-14
Novell NDS Database, page 11-24
ODBC Database, page 11-30
LEAP Proxy RADIUS Server Database, page 11-44
Token Server User Databases, page11-47
Deleting an External User Database Configuration, page 11-58
For information about the Unknown User Policy and group mapping features, see
Chapter 12, Administering External User Databases.