Exchange 2010 authentication w/Secure LDAP

Question

We are successfully authenticating users through the LTM/APM using LDAP in our AAA server. We need to switch to using Secure LDAP. What is required to ge this working? Simply chaning the port on the AAA server to the secure port does not do it. Any help would be much appreciated.

mikeshimkus_111 · Answer

Are you running version 10 of BIG-IP?  I believe you need to set up a pool of LDAP servers and a virtual using serverssl, then use that VIP address as your AAA server.  Check out this video:  http://devcentral.f5.com/weblogs/dctv/archive/2010/02/05/tech-demo-ldaps-configuration-on-big-ip-edge-gateway.aspx

ca689_1627 · Answer

&nbsp; Yes - running 10.2.3.  First time seeing that video... we'll check it out. Thanks!  &nbsp;

ca689_1627 · Answer

&nbsp; The configuration for Secure LDAP as described in the video works great for us. One question on that... it seems that there might be clear text credentials between the two VIPs. Is this a concern and if so, has anyone addressed this situation?

ca689_1627 · Answer

&nbsp; Quick update on this... we ended up moving to version 11 with iApps and Secure LDAP is built in to that version. There is no need in version 11 to create a separate vertual server for Secure LDAP. It seems to work great.

Forum Discussion

Exchange 2010 authentication w/Secure LDAP

Recent Discussions

F5 looses the token for the first call

iRule - Url rewrite and header replace and pool selection not working

Switch ssl profile based on weak cipher detection via IRULE

full-proxy HTTP2

Decode ObjectSID from Base64-encode string

Related Content

F5 BIG-IP Access Policy Manager (APM) - Google Authenticator and Microsoft Authenticator

The Business Partner Exchange - An F5 Distributed Cloud Services Demonstration

Doing mTLS Authentication per URL

iControl REST Authentication Token Management

Rustls with NGINX, Password Based Key Exchange, & Llama Drama

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS