Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
3748
Views
0
Helpful
3
Replies

Firepower Management Centeter admin Login with LDAP

mohamed.fawzy2012
Level 1
Level 1

‎02-12-2019 04:10 PM - edited ‎03-12-2019 07:17 AM

i am trying to configure External Authentication method using LDAP so i can login to virtual FMC using AD credentials but failed , i configured External Authentication method following below article but failed when trying to test user

https://www.cisco.com/c/en/us/support/docs/security/firesight-management-center/118738-configure-firesight-00.html

always i have this error 

127 users were found with this filter.
371 users were found with this filter but are invalid because their format is not supported for this appliance.
The server query size limit was exceeded. Use the Base Filter to reduce the number of records retrieved.
See Test Output for details.

 

i tried also using radius authentication but i got this error

 

Test Failed: Bind failed. Please verify your Authentication Method Specific parameters.


Test Failed: The search for your test user using your current parameters failed; please verify your authentication settings and test user credentials.

 

also what next step after configuring External Authentication method , do i have to create user and choose external method and then try , or there is something else ?

 

virtual FMC version = 6.2.3

 

1 person had this problem
Labels:
0 Helpful
3 Replies 3

balaji.bandi
Hall of Fame
Hall of Fame

‎02-13-2019 12:03 PM

If you have FMC 6.X 

 

Try below guide ; it works for me

 

https://www.cisco.com/c/en/us/support/docs/security/asa-firepower-services/200329-Configure-Active-Directory-Integration-w.html

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

mohamed.fawzy2012
Level 1
Level 1
In response to balaji.bandi

‎02-13-2019 01:25 PM

you didn't get the my issue , i don't want passive or active authentication , i want to authenticate admin user while they are logging to FMC GUI using external authentication

0 Helpful

balaji.bandi
Hall of Fame
Hall of Fame
In response to mohamed.fawzy2012

‎02-13-2019 01:43 PM

I may be misunderstood your question. 

 

What i have done was, In the AD we created a Group called Network Admin, added the selected users to that Group, and bind that user group in the FMC for authentication

 

Attached external authentication screenshot, here i used for reference guide

 

https://www.cisco.com/c/en/us/td/docs/security/firepower/60/configuration/guide/fpmc-config-guide-v60/Firepower_System_User_Management.html#concept_96C6A9709BB54F4D8BCE5CC19C92B7C3

 

Make Sense ?

 

 

 

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

Preview file
75 KB
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card