Help
FortiMail
FortiMail provides advanced, multi-layer protection against the full spectrum of email-borne threats
burakyigit
Staff
Staff

Created on ‎12-26-2022 10:42 PM Edited on ‎12-26-2022 11:53 PM By Moderator

Article Id 240992

Technical Tip: LDAP Integration

Description This article describes how to configure LDAPS.
Scope FortiMail.
Solution

FortiMail uses the server certificate (CA that is signed to the LDAPs server certificate) to verify the LDAPs server certificate.

The LDAP server CA certificate is used to encrypt the pre-master key. FortiMail and LDAPs compute the master secret to generate the session keys which will be used to encrypt/decrypt data.

 

1) Upload the CA certificate under System -> Certificate -> CA Certificate.

 

burakyigit_0-1672070306670.png

 

2) Create the LDAPs profile under the LDAP section and save it.

Make sure whether there is an allowed policy for LDAPS traffic from the FortiMail IP address to the LDAP Server on the firewall.

The default port number is TCP/636. It should be permitted on the firewall.
436
Submit Article Idea
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.