06-18-2014 07:28 AM - edited 02-21-2020 07:41 PM
Cisco ASA 5515-X
AnyConnect VPN with LDAP authentication (2 Domain Controllers).
I need to use LDAP-S to get the password-management.
At the ASA side, it is sufficient to enable LDAP over SSL.
On the Domain Controllers (2 Windows/2008) to enable LDAP-S I must use a certificate.
The Question is:
Can I use an "Identity Certificate" self-signed, generated on the firewall itself?
For example, the same one, used for AnyConnect clients or a new one?
And with what parameters must I create it?
Thanks,
Claudio
06-22-2014 07:47 PM
06-23-2014 02:45 AM
However, this does NOT answer my question, that maybe it was not very clear.
The question is: can I use a "self-signed" certificate for LDAP-S ?
Claudio
06-23-2014 06:17 AM
Hi Claudio,
Answer is yes.
"Step 1. Configure a Self−Issued Certificate"
Thanks
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide