I am pretty new to the VTM, so please bare with me. I am trying to configure radius and/or ldap with my windows 2008r2 domain controller which is running NPS for radius. I am able to get radius to work (not so well), but I noticed the VTM is only using PAP authentication which from what I understand is not encrypted. Is there any way to configure the VTM to use a more secure authentication method?
If not, is there a way to configure the VTM to use LDAPS over port 636 instead of standard unencrypted LDAP 389? I tried just plugging in port 636, and I received the following error.
Created LDAP connection to <domain_controller>:636
Using dnmethod: search
LDAP Bind for search using: CN=user,DC=contoso,DC=com
LDAP bind for search FAILED: I/O Error Connection reset by peer
No groups returned by authenticator
While we still encourage the community to assist with your post, I wanted to let you know that we have started a pilot program with TAC to help with some of the questions being asked and yours has been handed off to our TAC technicians. They will be reaching out to you shortly to gather some more information regarding your hardware/software so we can get you in touch with the correct group . I encourage you to continue to post in the community and let me know if there is any way I can help. Once your post is resolved, we will make sure to post the resolution back to the community to help other members.
You can find out more about the TAC Engaged program by clicking on the image below.