Manualshelf

Troubleshooting guide

ManualsBrandsCisco ManualsComputer equipmentWide Area Virtualization Engine 274
221222223224225226227228229230
1-19
Cisco Wide Area Application Services Configuration Guide
OL-26579-01
Chapter 1 Configuring Administrative Login Authentication, Authorization, and Accounting
Configuring Administrative Login Authentication and Authorization
Figure 1-5 Windows Domain Tab
Note If the related WINS server and the workgroup or domain name have not been defined for the
chosen device (or device group), an informational message is displayed at the top of this window
to inform you that these related settings are currently not defined, as shown in Figure 1-5. To
define these settings, choose Configure > Network > WINS.
Domain name, DNS server, and NTP configuration are mandatory prerequisites for the windows
domain join. For full AAA functionality, workgroup and WINS server must also be configured.
NetBIOS name need not be configured for windows domain join. If left unconfigured, the first
15 characters of the hostname are automatically assigned as the NetBIOS name during the join.
Step 7 Select the Domain Name from the drop-down list or click Create New to create a new Local Domain
Name.
Step 8 Select Kerberos or NTLM as a shared secure authentication method for administrative logins to the
chosen device (or device group). The default authentication protocol is kerberos.
Note Windows domain user login authentication using NTLM protocol is deprecated in this release
onwards. We recommend using Kerberos protocol for windows-domain user login
authentication.
You must use Kerberos protocol for encrypted MAPI acceleration.
Click the Auto Detect The Parameters button when using kerberos to automatically obtain the kerberos
realm, kerberos server, and domain controller. Domain, DNS, and NTP parameters must be configured
first. This option is not supported with NTLM.
Once the device has been queried for the parameters, a status message will be displayed on the screen
indicating either success or failure. The process may not be immediate and the status message will not
appear until the auto detection process has been completed.
When successful, the parameters can be reviewed and edited, if required. Once the parameters have been
reviewed, the values can then be submitted.