Matthew Kellow Posted February 12, 2020 Posted February 12, 2020 I have a legacy application that does not support LDAPS. I need to keep this application running after the impending Microsoft LDAPS patch that forces LDAPS on all domain controllers. I would like to be able to use our netscaler to convert the LDAP request's to LDAPS and vice versa. I have tryed setting up a LBVS using TCP 389 with a service bind of the domain controller on tcp 636 but this seems not to work. I can see the connection on 389 in the LBVS stats but i never receive a reply. NS Ver 12.0 Any help or suggestions would be greatly appreciated.
Koenraad Willems Posted February 15, 2020 Posted February 15, 2020 Hi Matthew, Are your DC's already configured to allowed LDAPS? Did you add the server's certificate to the service side? Here's a thread that is trying to do the reverse (LDAPS on the vserver side, regular LDAP on the service side): https://discussions.citrix.com/topic/391079-netscaler-ldap-proxy/ You could use that as a base, but switch up the vserver and service parts. Best, Koenraad
Matthew Kellow Posted February 17, 2020 Author Posted February 17, 2020 Hi Koenraad, Thanks for the reply. Yes the DC's are configured to allow LDAPS. The article u mentioned seems to work when reversed. I now am getting an error that the server is unwilling to complete the request. I believe that this is an AD issue. Cheers Matt
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now