This community is for technical, feature, configuration and deployment questions.
For production deployment issues, please contact the TAC! We will not comment or assist with your TAC case in these forums.
Please see How to Ask the Community for Help for other best practices.
AD-Connector is using listed below protocols between ISE-AD, all connections are secured and encrypted using SALS for LDAP, RPC is encrypted using AES or higher based on AD version
So Currently, Is LDAPs Supported on AD-Connector ? Is this feature on roadmap/plans for future? if, yes when it will be released ?
The other Workaround is to use LDAP-Connector but you have some limitation for this connector
Solved! Go to Solution.
So as you already pointed out, secure ldap is supported today, and there is a built in schema out of the box for integrating with Active Directory.
But it is not supported on the AD connector, you can only set it up as an LDAP external identity store. If you want this functionality to be explored then you will have to submit an ISE ehancement request.
Now I'm not certain on the limitations you identified. I have used LDAP for PEAP, and eap-fast with eap chaining.
Thanks Damien for your reply
Please clarify your LDAP comment on PEAP because the admin guide and the GUI both make it very clear it is not supported. I believe I have tried it as well and it doesn't work. If you are doing PEAP with cert as inner method well that is a different story.