Re: Catalyst 9300 LDAP/S Configuration

TW80CJ5 · ‎10-30-2020

Good Morning!

We are using LDAP/S as authentication to our devices. We have it configured on our ASA's and are having difficulty configuring it on the 9300 switch running 16.12.04.

Is there a configuration guide to set LDAP/S as the authentication mechanism? We can create the Trustpoint, just not sure about binding it all together.

Thanks!!!

balaji.bandi · ‎10-30-2020

I do not believe there is one, you need to have AAA / Radius / TACACS / NPS Server for authentication?

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

TW80CJ5 · ‎10-30-2020

Yessir...it is a requirement.

inderdeeps · ‎10-30-2020

I think the below configuration assistance is valid for 16.12.04 IOS-XE as well

https://www.cisco.com/en/US/docs/ios-xml/ios/san/configuration/xe-3se/3850/san-local-ldap.html

Regards

TW80CJ5 · ‎10-30-2020

I should have been more specific...we need to be able to use LDAP/S with Active Directory. We would like to use our domain credentials to sign into the switch / router.

balaji.bandi · ‎10-31-2020

As i understand If you looking for device administration using LDAP Direct interaction with Switch/router using LDAP - (i have not deploy any time like this )

you can do using AAA with LDAP (if you have a radius or tacacs server - which intern use your LDAP for users for authentication)

check this thread :

https://community.cisco.com/t5/network-access-control/ldap-authentication-on-router-vty-login/td-p/2242310

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help