Cisco Cisco NAC Appliance 4.9.4 기술 매뉴얼
Configuration Active Directory SSO for NAC Guest
Server
Server
Document ID: 109602
Contents
Introduction
Prerequisites
Requirements
Components Used
Conventions
Configure
Network Diagram
Configurations
Verify
Verify ADSSO User Group Mapping
Troubleshoot
Related Information
Prerequisites
Requirements
Components Used
Conventions
Configure
Network Diagram
Configurations
Verify
Verify ADSSO User Group Mapping
Troubleshoot
Related Information
Introduction
The Active Directory Single Sign−On (AD SSO) feature uses Kerberos between the web browser of the client
and the Cisco NAC Guest Server in order to automatically authenticate a guest against an Active Directory
Domain Controller.
and the Cisco NAC Guest Server in order to automatically authenticate a guest against an Active Directory
Domain Controller.
Note: For the purpose of this document, the NTP and DNS servers are also on the DC, but this is possibly not
the case in your environment.
the case in your environment.
Prerequisites
Requirements
Ensure that you meet these requirements before you attempt this configuration:
DNS must be configured and work on the Cisco NAC Guest Server.
•
DNS must be configured and work on the Domain Controller.
•
The DNS entries for the Cisco NAC Guest Server must be defined:
A record
♦
PTR record
♦
•
The DNS entries for the Domain Controller must be defined:
A record
♦
PTR record
♦
•
Cisco NAC Guest Server time settings must be synchronized with the Active Directory Domain.
•
Components Used
The information in this document is based on these software and hardware versions: