Forum Discussion
F5 Waf AD integration issue
Hi all,
I hope this message finds you well. I'm writing to bring to your attention an issue we are experiencing with access to our F5 devices. We have a total of four F5 devices, all of which are Active Directory integrated. Here's a breakdown of the current situation:
- Port 389 (LDAP):
- Three out of the four devices are accessible on port 389 without any issues.
- Port 636 (LDAPS):
- None of the devices are accessible on port 636 (LDAPS).
- This includes three of the devices that are accessible on port 389.
- DMZ Device:
- One device, which is located in the DMZ, is inaccessible on both ports 389 and 636
- Aswin_mkCumulonimbus
Hello
Please use the link to troubleshoot this :-Troubleshooting LDAP authentication for BIG-IP administrative users (f5.com)
- also you can check if there is any firewall block between AD servers and F5. Try to ping/telnet ldap servers from F5,
- Verify network routes
- zamroni777Nacreous
that situation basically hapens because of firewall config created by human, not limitation of the technology.
so the solution is human compromise, i.e. set the firewall to allow related f5's ip addresses to access the ad server's ldap/s ports.
Recent Discussions
Related Content
* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com