Connect Multiple Active Directory Domains
To import users and groups from multiple Active Directory (AD) domains or multiple AD forests, register a domain controller or domain in Cisco Secure Access for each AD domain that needs to integrate with Secure Access. We recommend that you deploy a separate Cisco AD Connector for each AD domain. For more information, see Connect Active Directory to Secure Access.
If you wish to use the same Cisco AD Connector to provision users and groups from multiple AD domains, ensure that the connector account is created with the same sAMAccountName name and password across all of your domains.
This feature is not enabled by default. Contact Support to have the feature enabled. For more information, see Contact Cisco Secure Access Support.
Note: If you have groups in an AD domain that have member users in another AD domain, Secure Access requires that you deploy a single Cisco AD Connector for multiple AD domains
Prerequisites for AD Connectors < Connect Multiple Active Directory Domains > Manage AD Components
Updated about 1 month ago