Preview Tool

Cisco Bug: CSCus63257 - Doc: ACS 5.4 TCP 389 not included in table listing ports needed for AD

Last Modified

Feb 06, 2015

Products (1)

  • Cisco Secure Access Control Server Solution Engine

Known Affected Releases


Description (partial)

When integrating ACS with Active Directory or LDAP, customers should make sure that both TCP and UDP ports 389 are open. If only UDP port 389 is open, integration with LDAP/AD will fail.

In the ACS 5.4 User Guide under "Managing Users and Identity Stores" in the "Microsoft AD" section, the unlabeled table directly below the sentence "If there is a firewall between ACS and AD, certain ports need to be opened in order to allow ACS to communicate with AD. The following are the default ports to be opened:" currently incorrectly states that only UDP port 389 needs to be open for LDAP.
Bug details contain sensitive information and therefore require a account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.