Cisco ASA LDAP with Foxpass
Note: you may have to adjust SSL settings to require the minimum version to TLSv1.2
LDAP config via ASDM:
Server: ldap.foxpass.com
Enable LDAP over SSL (checked, or yes, which populates port 636)
Server type: OpenLDAP
Base DN: <your base DN, e.g. dc=example,dc=com>
Naming Attribute: uid
Login DN: <your bind account, e.g. cn=asa,dc=example,dc=com>
LDAP config via command line:
aaa-server FOXPASS-LDAP protocol ldap
aaa-server FOXPASS-LDAP (OUTSIDE) host ldap.foxpass.com
ldap-base-dn <your base DN, e.g. dc=example,dc=com>
ldap-login-dn <your bind account, e.g. cn=asa,dc=example,dc=com>
ldap-login-password
ldap-naming-attribute uid
ldap-scope subtree
server-type openldap
server-port 636
ldap-over-ssl enable
test aaa-server authentication FOXPASS-LDAP host ldap.foxpass.com
Updated about 1 year ago