el 11-29-2024 08:05 AM
Good afternoon or evening everyone, I have a problem to integrate a cisco 9800 wlc with LDAP.
In the cisco WLC I have configured the LDAP profile and it has been associated with an SSID.
During the authentication tests with a user it was detected that when the cisco wlc makes a bind request to the LDAP it does not accept it because it considers it an unsecured connection.
ip of the WLC : 10.159.72.2 ip of the ldap : 10.190.128.4
The tests were performed using port 389 on the wlc side.
A simulation has also been performed with a laptop by installing a program so that it can make a bind request to the ldap, but in this simulation the LDAP does allow the laptop to complete this bind request.
test from the laptop to the ldap
Attached two images of the packet capture made from wlc.
for the configuration we have used this link
el 11-29-2024 08:13 AM
el 11-29-2024 08:30 AM
Hi Flavio
We have tried testing with port 636 and installing a trusted certificate for the ldap, but the TCP session is not established.
A reset of the tcp session is received from the LDAP.
The client indicates that part of the firewall the path is clear to the LDAP.
In addition, the client tells us that they are always using port 389 for LDAP communications.
el 11-29-2024 08:43 AM
I asked because on the wireshark log you shared, we can see the information about TLS.
el 11-29-2024 11:44 AM
from same link you share
did you enable secure mode
el 11-29-2024 12:08 PM
Hello @Nirqa suport
AFAIK windows server does not allow anonymus authentication.
What versión of windows server are you running?
Descubra y salve sus notas favoritas. Vuelva a encontrar las respuestas de los expertos, guías paso a paso, temas recientes y mucho más.
¿Es nuevo por aquí? Empiece con estos tips. Cómo usar la comunidad Guía para nuevos miembros
Navegue y encuentre contenido personalizado de la comunidad