cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
207
Views
0
Helpful
4
Replies

Active directory password shown in firepower

raymondluis13
Beginner
Beginner

So, i integrate identity policy on firepower with my active directory. All works, but there one problem. Somehow when i see the traffics log, i can see the user password.

Anyone know why this happen?

For my use case, i just want to use identity policy for visibility in traffics. Thank you

RL
4 Replies 4

Kasun Bandara
VIP Advisor VIP Advisor
VIP Advisor

use LDAPS 

Please rate this and mark as solution/answer, if this resolved your issue
Good luck
KB

Aref Alsouqi
VIP Collaborator VIP Collaborator
VIP Collaborator

Are you referring to which logs in specific? The downside of using the normal LDAP is that LDAP does not apply any encryption, this is why you should move to LDAPs which uses certificates so its traffic encrypted.

hi, thanks for the response. apparently one of my AD server use PFX certificate. PFX certificate contain private key and public key, instead of normal certificate that only contain public key. What should i do about it? should i extract the .cert file from PFX or should i change the server certificate to .cert?

RL

Aref Alsouqi
VIP Collaborator VIP Collaborator
VIP Collaborator

The certificate that you would need to import into the FTD and associate it to LDAPS is the issuer certificate (or root CA cert) of the AD certificate.

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Recognize Your Peers