I tried to configure my LDAP authentification using a CA certificate.
Test Connectivity is successful also Test User credentials.
Before my VPN worked fine. I deleted my user (first from group) then I recreated it. No problem I can browse LDAP.
I didn't change anything to my client. I waited a few minute sbefore trying. But everytime it fails at 80% and looking at logs : Events, VPn it says :
Tried on another Fortinet, same result.
What am I doing wrong ?
Not e: I followed
what do you mean with deleted your user?
is the user or usergroup still allowed on the sslvpn firewall policy?
It means. I unregistred it and register it back by browsing ladp
ok, not sure if that has any effect
and .. is the user or usergroup still allowed on the sslvpn firewall policy?
If I change using LDAP without SSL it works... But I need it for the renew password option
the cookbook suggests this works with LDAPS enabled
Did you upload your domains CA to the firewall? (I'm assuming you're using a Windows Domain as your LDAP source)