07-21-2017 07:50 AM
Team,
I am working with one of the customers for ISE POC. Customer is using Microsoft AD for identity store but port 445 is blocked on customer network. I have following queries with respect to ISE and AD integration.
1. Why "SMB - 445" port is required for ISE and AD integration?
2. If SMB-445 port is not enabled on the network, will ISE and AD integration work?
When I search on internet, LDAP and SMB has same usage
Thanks,
Neelesh Marathe
Solved! Go to Solution.
07-21-2017 08:52 AM
The recent vulnerability is on SMBv1. ISE-AD integration uses SMBv2, which also on TCP 445. Correct, it requires to allow such connections from ISE to the AD infrastructure for the integration to work.
07-21-2017 08:52 AM
The recent vulnerability is on SMBv1. ISE-AD integration uses SMBv2, which also on TCP 445. Correct, it requires to allow such connections from ISE to the AD infrastructure for the integration to work.
07-27-2017 03:25 AM
Thank you very much Hsing for your inputs.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide