SonicWALL SSL VPN Security Question
Hey Guys,
My client have a SonicWALL TZ 300, We have setup and configured SSL VPN to communicate to AD over LDAP. I have enabled TLS over LDAP on the SonicWALL and it's using port 636. Question, do I need to do something on the server 2012 end? See pic attached.
My client have a SonicWALL TZ 300, We have setup and configured SSL VPN to communicate to AD over LDAP. I have enabled TLS over LDAP on the SonicWALL and it's using port 636. Question, do I need to do something on the server 2012 end? See pic attached.
You asked, "Question, do I need to do something on the server 2012 end?"
Depend on exactly how you're connecting.
Since you're using LDAPS, a VPN will only slow down your connection. TLS already provides your encryption. Just connect directly to your LDAPS IP + port.
No pic attached.
Depend on exactly how you're connecting.
Since you're using LDAPS, a VPN will only slow down your connection. TLS already provides your encryption. Just connect directly to your LDAPS IP + port.
No pic attached.
TME / Network Security Evangelist
CERTIFIED EXPERT
for LDAP over TLS you need to inject an SSL cert into the domain.
easiest way is to install Microsoft CA server
https://blogs.msdn.microsoft.com/microsoftrservertigerteam/2017/04/10/step-by-step-guide-to-setup-ldaps-on-windows-server/
also suggest you grab the root CA server and inport that into the SonicWall
easiest way is to install Microsoft CA server
https://blogs.msdn.microsoft.com/microsoftrservertigerteam/2017/04/10/step-by-step-guide-to-setup-ldaps-on-windows-server/
also suggest you grab the root CA server and inport that into the SonicWall
Question, without installing Certificate Authority on the server, will SonicWALL TLS provide encryption? David mentioned it would, and J you are saying it will not?