FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
Description When setting up a new LDAP server in the FortiGate, an error like the one below might be displayed.
Connection status: ldap_-5.
This usually indicates that the response from the LDAP server takes longer than the configured timeout. This is due to a timeout in the connection, a delay in the network or a LDAP too big to browse in under 5 seconds. The default has been set to 5 seconds in an attempt to improve security, but depending on the circumstances, 5 seconds may not be long enough to receive a response.
Solution Normally, address any underlying issue that delays the response from the server; but can also increase the default timeout to a more suitable value.
# config system global set remoteauthtimeout >seconds< end
If the problem persists after the change and LDAPS is being used, make a new attempt using LDAP instead.
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.