This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

How Publish LDAP

Hi,

i want to publish ldap through utm i have an external ticket system support active directory can i publish ldap to make the ticket system authenticate from internal domain ?

Thanks in advance

This thread was automatically locked due to age.

0 apijnappels over 10 years ago

Yes you can. You need to DNAT traffic on port 389 and/or 3268 and if you use LDAPS those ports are 636 and 3269.
They need to be forwarded to you LDAP server.

You should make the rule for this as tight as possible and only allow this for the public IP of the ticket system to avoid misuse/hackattempts.
Cancel
Vote Up 0 Vote Down

Cancel
0 MandoesaM over 10 years ago

Thanks so much works for me but when i create firewall rule from external ticket system (LDAP) to Internal domain doesn't work but if i change external ticket sysetm to ANY it works !!! now any one able to access port 389 to internal domain and this is not secure
Cancel
Vote Up 0 Vote Down

Cancel
0 apijnappels over 10 years ago in reply to MandoesaM

Thanks so much works for me but when i create firewall rule from external ticket system (LDAP) to Internal domain doesn't work but if i change external ticket sysetm to ANY it works !!! now any one able to access port 389 to internal domain and this is not secure

Are you sure you are using the right IP for the remote system? Is it possible that the remote system has multiple IP's?
You can use the firewall log (if you enable the log on the specific firewall rule) to search for the IP's connecting to your LDAP server.
Cancel
Vote Up 0 Vote Down

Cancel