Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 4 replies
  • Subscribers 1 subscriber
  • Views 4021 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Require LDAP signing

PeterRL
Hi all,

we have a problem regarding configuring the authentication servers on a UTM  9.106-17. 

On /var/log/aua.log i´ve the message stating

[HTML]"2013:11:01-15:25:34 proxy-1 aua[29679]: id="3006" severity="info" sys="System" sub="auth" name="Bind test failed. Method: adirectory, error: DENIED"
[/HTML]

After some reading, i found that the DC´s have the policy to require LDAP signing. 

I have imported the UTM certificate into the DC, but still the issue is there. ( The issue was also mentioned on a previous post here: https://community.sophos.com/products/unified-threat-management/astaroorg/f/56/t/49410 and i tried to follow the same settings, but i still cannot make this configuration.) [:(]

Can anyone please help me in troubleshoot this? 

Thank you.


This thread was automatically locked due to age.
  • 0
    It's the very first un-fixed issue listed in the V9 KIL:

    ID24065 9.004 Regression from V8: Recipient Verification against AD not working with LDAP-SSL
    ------------------------------------------------------------------------
    Description:  SMTP recipient verification against AD is not working with
                  LDAP-SSL.
    Workaround:   Switch to non encrypted LDAP connections or recipient
                  verification with callout.
    Fixed in:



    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0 in reply to BAlfson
    Thank Balfson,

    Despite i wanted just to use Ldap on webfiltering, i suppose from your reply it´s the same thing.

    I was trying to search for the V9 KIL, but i didn´t found if this was already fixed. 

    This UTM is running already the latest version. Shouldn´t it supposed to be fixed Balfson?
  • 0
    Thank you Michael and Balfson for the clarification.
Unfiltered HTML