cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
2936
Views
0
Helpful
2
Replies

ISE and AD integration - Port 445 requirement

meetneelesh79
Level 1
Level 1

Team,

I am working with one of the customers for ISE POC. Customer is using Microsoft AD for identity store but port 445 is blocked on customer network. I have following queries with respect to ISE and AD integration.

1. Why "SMB - 445" port is required for ISE and AD integration?

2. If SMB-445 port is not enabled on the network, will ISE and AD integration work?

When I search on internet, LDAP and SMB has same usage

Thanks,

Neelesh Marathe

1 Accepted Solution

Accepted Solutions

hslai
Cisco Employee
Cisco Employee

The recent vulnerability is on SMBv1. ISE-AD integration uses SMBv2, which also on TCP 445. Correct, it requires to allow such connections from ISE to the AD infrastructure for the integration to work.

View solution in original post

2 Replies 2

hslai
Cisco Employee
Cisco Employee

The recent vulnerability is on SMBv1. ISE-AD integration uses SMBv2, which also on TCP 445. Correct, it requires to allow such connections from ISE to the AD infrastructure for the integration to work.

Thank you very much Hsing for your inputs.