Solved: Cisco FTD LDAPs

Irakli Gvishiani · ‎01-28-2022

Hello,

I Would like to integrate my Cisco FTD (Version 6.6.4) with Active Directory (2019) using LDAPS over SSL. But we get this error (see attachment). Integration with pure LDAP works fine. But we need LDAPS over SSL.

How I can configure this? Are there any additional manipulations in Active Directory?

Thanks.

Irakli Gvishiani · ‎02-02-2022

Problem has been solved.

Just need to add LDAPs Root CA into Object/PKI/Cert Enrollment and then add this cert on FTD Devices/Certificates/Add.

View solution in original post

Mark Elsen · ‎01-28-2022

- Check if this thread can be helpful : https://community.cisco.com/t5/network-security/firepower-1120-ldaps-not-working-but-ldap-is/td-p/4048083

M.

-- Let everything happen to you
   Beauty and terror
      Just keep going
     No feeling is final
Reiner Maria Rilke (1899)

Aref Alsouqi · ‎01-29-2022

Did you configure the LDAPS FQDN or the IP? I would configure the FQDN and make sure it is included in the used certificate as a CN or a SAN.

sadist001 · ‎01-29-2022

I configured IP. I will try to change from IP to FQDN.

Aref Alsouqi · ‎01-29-2022

and please don't forget to create a DNS entry on your DNS server for that FQDN.

Irakli Gvishiani · ‎02-02-2022

Problem has been solved.

Just need to add LDAPs Root CA into Object/PKI/Cert Enrollment and then add this cert on FTD Devices/Certificates/Add.