Jump to content

Recommended Posts

Posted

I have a legacy application that does not support LDAPS. 

 

I need to keep this application running after the impending Microsoft LDAPS patch that forces LDAPS on all domain controllers.

 

I would like to be able to use our netscaler to convert the LDAP request's to LDAPS and vice versa.

 

I have tryed setting up a LBVS using TCP 389 with a service bind of the domain controller on tcp 636 but this seems not to work. 

 

I can see the connection on 389 in the LBVS stats but i never receive a reply. 

 

NS Ver 12.0

 

Any help or suggestions would be greatly appreciated. 

Posted

Hi Matthew,

 

Are your DC's already configured to allowed LDAPS?

Did you add the server's certificate to the service side?

 

Here's a thread that is trying to do the reverse (LDAPS on the vserver side, regular LDAP on the service side):

https://discussions.citrix.com/topic/391079-netscaler-ldap-proxy/

You could use that as a base, but switch up the vserver and service parts.

 

Best,

 

Koenraad

Posted

Hi Koenraad,

 

Thanks for the reply. 

 

Yes the DC's are configured to allow LDAPS.

The article u mentioned seems to work when reversed. 

 

I now am getting an error that the server is unwilling to complete the request. I believe that this is an AD issue.

 

Cheers

Matt

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
×
×
  • Create New...