I see that FortiGate requires certificates for secure LDAP. I do not
want to introduce certificates on my domain. Is it possible to setup a
port just for LDAP (unsecure) authentication for users logging into an
SSL VPN and have a different port be fo...
emnoc wrote:Again; You do NOT need to import a certificate for LDAPS.
login via cli do a "show full user ldap" review the settings, review
that the right port is enabled? Ensure that the ldap_client ( fgt ) is
configured correct. Run cli cmd diag sys...
emnoc wrote:Not following you. Let's back up a little since what you
stated is NOT correct I see that FortiGate requires certificates for
secure LDAP In correct, you can configure a LDAPS server and the
fortigate can query against that LDAPS server (...
Jeff_FTNT wrote:Use Windows AD as LDAP server , it also support.## it
need go over LDAPS for Windows ADConfig user ldap/edit xxxset secure
ldapsset password-renewal enableend Does LDAPS require installing
Certificate Services on the domain controller...
