I've got a domain testsetup, consisting of a domain controller (Win2003 Enterprise SP1), AAA-server (Cisco ACS 4.0 on Win2003 Enterprise SP1), accesspoint (D-link), Certification Authority and a wireless client. Cisco ACS and CA are on the same machine. My intension is quite obvious: To get the wireless client to connect to AP, authenticate against Cisco ACS using external database (Windows Database). I've used the following guide to configure the systems:
and I've also checked out some of the chapters in "User Guide for Cisco Secure ACS for Windows 4.0":
The wireless client connects to ACS server through AP, but cannot get authenticated. In Reports and Activity - Failed Attempts I see "Authen failed" with Authen-Failure-Code "External user not found" each time the wireless user tries to connect. I do not have any users in Ciscos internal database since I want to use the users from Active Directory. It appears that Cisco ACS can't find any users in Windows Database or that I've missed some steps that tell the ACS-server what users are supposed to get authenticated.
What do I have to do to get the wireless client authenticated through Cisco ACS 4.0 using Active Directory user accounts and credentials?
Feel free to ask for additional details about my configuration, but it seems that my problem is rather limited.
Thx in advance