Forum Discussion

Nimbostratus

Jan 23, 2014

Is it possible to load balance ldap requests to Microsoft AD servers?

Our linux servers currently authenticate using ldap against Microsoft AD servers. Right now we are doing this using insecure ldap and we point directly at the AD servers. What we would like to do i...

design

Wand_97484

Nimbostratus

Jan 24, 2014

Hi Dan,

if you have the following setup: DC A Hostname DCA.myad.net DC B Hostname DCB.myad.net each of this hosts would have different Certificate installed to enable LDAPS at 626 (DC) or 3269 (GC) port.

Add a LTM ViP with SSL offload Hostname DCALL.myad.net and a Server SSL Profile. This will perform SSL offload at the LTM for the VIPname and re-encrypt to the DC's (if they are properly configured to accept LDAPs).

cheers

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Is it possible to load balance ldap requests to Microsoft AD servers?

AppWorld 2026: Save the Date and Join Our Community In Person!

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

F5 Big-IP Trust Internal CA Chain certificates for Web Servers

XC - geo LB to the origin servers

Floating Ip Problem

F5 rSeries || Upgrade tenant

Expired client-certificate

Related Content

Microsoft Powershell with iControl

Microsoft Exchange April 2021 Security Update And Possible Mitigation With Advanced WAF

SAML F5 SP - Microsoft Entra

F5 BIG-IP Access Policy Manager (APM) - Google Authenticator and Microsoft Authenticator

Microsoft SharePoint and Microsoft Exchange December 2020 Security Update

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS