01-13-2020 11:39 PM
In March our AD environment will no longer support LDAP simple bind over 389, Only LDAPS over 636 will be allowed. this is according
In ISE We will change our LDAP iditenty sources to LDAPS. But I can not find any information on AD join points and how it is affected by it and if there is any settings for it.
On LDAP identity sources do I need to change anything else or just AD Join Point?
Solved! Go to Solution.
01-16-2020 06:12 PM
AD join points not affected AFAIK. Please also see my responses in MS advisory ADV190023 ISE ldap
01-14-2020 01:52 AM
Hello,
Yes, for secure connection between ISE and LDAPS you have to enable Secure Authentication and select root certificate from drop down list
Steps: Administration>External identity sources> LDAP>your_LDAP>Connection.
01-14-2020 05:13 AM
I saw that now and we will try that.
01-14-2020 11:51 PM
01-15-2020 12:53 AM
I understand this step: Steps: Administration>External identity sources> LDAP>your_LDAP>Connection.
But what I am wondering about is Administration>External identity sources>Active directory.
How will this be affected when using LDAPS instead of LDAP.
You can not change any ports here.
After you have pressed submit there you type in a AD account that joins ISE in the AD.
But when ISE have joined what protocol does it run and how do you change LDAP to LDAPS since microsoft will have a AD security patch removing LDAP.
including a pic as well.
01-16-2020 06:12 PM
AD join points not affected AFAIK. Please also see my responses in MS advisory ADV190023 ISE ldap
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide