Solved

Help with Firebox X550e Active Directory Integration

Posted on 2009-05-11
2
2,295 Views
Last Modified: 2013-11-16
Hello,

This is my first firebox. I got an x550e running last week and I want to get ssl vpn out to those that need it. I am trying to authenticate via active directory but and having no luck.

The log shows 2009-05-11 15:34:05 admd ADM auth Firewall user [dave@Active Directory] Error, Reason - Ldap binding not successful msg_id="1100-1017"       Event

I am running 2008 on my DCs, both are global catalog servers. I created a firebox user for the active directory queries.

After this is done I need to take on the SSO for web blocker. Can the agent go on a 2008 server or only 2003? All of my DCs are 2008.
0
Comment
Question by:nkrueger84
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 6

Expert Comment

by:ob1_
ID: 24407383
What settings have you configured in Policy Manager under Setup > Authentication > Authentication Servers > Active Directory > Primary Settings?
0
 

Accepted Solution

by:
nkrueger84 earned 0 total points
ID: 24408838
my issue was that the AD group name had a space in it but the default group name in the firebox does NOT have a space....
0

Featured Post

Easy, flexible multimedia distribution & control

Coming soon!  Ideal for large-scale A/V applications, ATEN's VM3200 Modular Matrix Switch is an all-in-one solution that simplifies video wall integration. Easily customize display layouts to see what you want, how you want it in 4k.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Do you have a windows based Checkpoint SmartCenter for centralized Checkpoint management?  Have you ever backed up the firewall policy residing on the SmartCenter?  If you have then you know the hassles of connecting to the server, doing an upgrade_…
Juniper VPN devices are a popular alternative to using Cisco products. Last year I needed to set up an international site-to-site VPN over the Internet, but the client had high security requirements -- FIPS 140. What and Why of FIPS 140 Federa…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

734 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question