https://community.cisco.com/t5/network-security/fmc-ldap-external-authentication/m-p/4559820#M1087694 <P>what version of FMC, how about try to LDAP user account you using</P> <P>&nbsp;</P> <P><A href="mailto:useradmin@domain.com" target="_blank" rel="noopener">useradmin@domain.com</A> ?</P> <P>&nbsp;</P> Fri, 25 Feb 2022 17:30:38 GMT balaji.bandi 2022-02-25T17:30:38Z https://community.cisco.com/t5/network-security/fmc-ldap-external-authentication/m-p/4559772#M1087691 <P>Hi,</P><P>&nbsp;</P><P>I'm getting invalid credentials error while trying to connect integrate the FMC with my AD for external authentication. The exact error is:</P><P class="lia-indent-padding-left-30px"><EM>Opening connection to LDAP server - 10.20.20.10:389 - cn=user,dc=domain,dc=local</EM><BR /><EM>Current TLS Require Cert: 0</EM><BR /><EM>binding</EM><BR /><EM>ldap bind invalid credentials error: 49</EM></P><P>&nbsp;</P><P>I tried with multiple accounts with domain admin privileges.&nbsp;Actually,&nbsp;I have other appliances like ISE correctly integrated with the same AD using the same credentials. There is no firewall in between, same subnet. Also the AD has the local firewall disabled. Any idea?</P><P>&nbsp;</P><P>Thanks.</P> Fri, 25 Feb 2022 16:33:56 GMT https://community.cisco.com/t5/network-security/fmc-ldap-external-authentication/m-p/4559772#M1087691 AntonioMacia 2022-02-25T16:33:56Z https://community.cisco.com/t5/network-security/fmc-ldap-external-authentication/m-p/4559820#M1087694 <P>what version of FMC, how about try to LDAP user account you using</P> <P>&nbsp;</P> <P><A href="mailto:useradmin@domain.com" target="_blank" rel="noopener">useradmin@domain.com</A> ?</P> <P>&nbsp;</P> Fri, 25 Feb 2022 17:30:38 GMT https://community.cisco.com/t5/network-security/fmc-ldap-external-authentication/m-p/4559820#M1087694 balaji.bandi 2022-02-25T17:30:38Z https://community.cisco.com/t5/network-security/fmc-ldap-external-authentication/m-p/4559868#M1087700 <P><a href="https://community.cisco.com/t5/user/viewprofilepage/user-id/1196606">@AntonioMacia</a> can the FMC resolve the DNS names of the LDAP servers?</P> <P>When you configure LDAP, did you select "Active Directory" as the server type? It could be related to the attribute used to query AD.</P> <P>&nbsp;</P> <P><A href="https://www.cisco.com/c/en/us/td/docs/security/firepower/623/configuration/guide/fpmc-config-guide-v623/user_accounts_for_management_access.html" target="_blank">https://www.cisco.com/c/en/us/td/docs/security/firepower/623/configuration/guide/fpmc-config-guide-v623/user_accounts_for_management_access.html</A></P> <P>&nbsp;</P> Fri, 25 Feb 2022 18:51:10 GMT https://community.cisco.com/t5/network-security/fmc-ldap-external-authentication/m-p/4559868#M1087700 Rob Ingram 2022-02-25T18:51:10Z