Hi All, I just tried setting up ACS to use the local Windows server database for user authentication. The server was not setup as a Domain Controller, therefore the only Windows Database that showed up was "\LOCAL".
In the Database Configuration page in ACS, I selected "dialin" and "unkown user", I moved the only option (\LOCAL) over to the domain list, and I left the default authentication option "CISCO". I then added "Administrators" in the mapping page, and specified they use the "default" Group. Lastly, I specified that this user database be checked in the event that no matching entries were found in the local ACS database. Seemed like everything was set, but I could not authenticate users using the Windows local user database (same server that ACS is on). I could, however, authenticate using Internal ACS users no problem. The only thing I really noticed in the failed auth log, was "*internal error*" for all attempts to use the Windows user database. I'm guessing this won't work unless the server is configured to be in Active Directory? Thanks, Jason
_______________________________________________ For more information regarding industry leading CCIE Lab training, please visit www.ipexpert.com Are you a CCNP or CCIE and looking for a job? Check out www.PlatinumPlacement.com
