Skip to main content
JFKurz
JFKurz
New Member
February 14, 2022
Solved

LDAP connection from Fortinet to Microsoft AD

  • February 14, 2022
  • 3 replies
  • 9646 views

We have a problem with our LDAP connection from Fortigate to Microsoft AD.
The connection was successfull, authentication against AD is still working.
But on our DC's we have many Log Entries ( Microsoft Security Auditing ) that the connection from Forti were rejected.

Did anyone have the same problem?

Best answer by Debbie_FTNT

Hey JFKurz,

some background would be useful, such as:

- what firmware version is your FortiGate?

- what is the exact error message you see in Win AD?

- do you also use FSSO in addition to LDAP?

-> if yes, are you certain the error is caused by the LDAP connection, not the FSSO connection?

- do you have failed user logins in FortiGate User Event logs?

3 replies

Debbie_FTNT
Staff & Editor
Debbie_FTNTAnswer
Staff & Editor
February 14, 2022

Hey JFKurz,

some background would be useful, such as:

- what firmware version is your FortiGate?

- what is the exact error message you see in Win AD?

- do you also use FSSO in addition to LDAP?

-> if yes, are you certain the error is caused by the LDAP connection, not the FSSO connection?

- do you have failed user logins in FortiGate User Event logs?

JFKurz
JFKurzAuthor
New Member
February 14, 2022

Hey Debbie_FTNT,

thanks for your response.

- v7.0.3
- Event ID 4625 ( Unknown Username or Password ) against Domain SAMBA.
- No we aren't using FSSO
- If couldn't found any failed login report, but if've found many log entries from FSSO-polling-ldap-Server. Which confuses me a litlle bit, cause of i can't remeber that we're using FSSO. The User & Authentication / Signel-Sign-On tab, is empty ...

JFKurz
JFKurzAuthor
New Member
February 14, 2022

Nevermind ... we have configured AD Connectors ...

If've found the problem. Thread can be closed ...

cabby
cabby
New Member
July 28, 2022

Hi JFKurz,

 

we have similar problems (just in the past few days). How did you solve the issue?

 

Thanks for answering

Debbie_FTNT
Staff & Editor
Debbie_FTNT
Staff & Editor
July 28, 2022

Hey cabby

- same questions as above, would be helpful to know the following:

- what firmware version is your FortiGate?

- what is the exact error message you see in Win AD?

- do you also use FSSO in addition to LDAP?

-> if yes, are you certain the error is caused by the LDAP connection, not the FSSO connection?

- do you have failed user logins in FortiGate User Event logs?

Terms & ConditionsAccessibility statement