Solved: Cisco FTD LDAPs

Irakli Gvishiani · ‎01-28-2022

Hello,

I Would like to integrate my Cisco FTD (Version 6.6.4) with Active Directory (2019) using LDAPS over SSL. But we get this error (see attachment). Integration with pure LDAP works fine. But we need LDAPS over SSL.

How I can configure this? Are there any additional manipulations in Active Directory?

Thanks.

Irakli Gvishiani · ‎02-02-2022

Problem has been solved.

Just need to add LDAPs Root CA into Object/PKI/Cert Enrollment and then add this cert on FTD Devices/Certificates/Add.

View solution in original post

marce1000 · ‎01-28-2022

- Check if this thread can be helpful : https://community.cisco.com/t5/network-security/firepower-1120-ldaps-not-working-but-ldap-is/td-p/4048083

M.

-- Each morning when I wake up and look into the mirror I always say ' Why am I so brilliant ? '
When the mirror will then always repond to me with ' The only thing that exceeds your brilliance is your beauty! '

Aref Alsouqi · ‎01-29-2022

Did you configure the LDAPS FQDN or the IP? I would configure the FQDN and make sure it is included in the used certificate as a CN or a SAN.

sadist001 · ‎01-29-2022

I configured IP. I will try to change from IP to FQDN.

Aref Alsouqi · ‎01-29-2022

and please don't forget to create a DNS entry on your DNS server for that FQDN.

Irakli Gvishiani · ‎02-02-2022

Problem has been solved.

Just need to add LDAPs Root CA into Object/PKI/Cert Enrollment and then add this cert on FTD Devices/Certificates/Add.