VMware NSX AD authentication for SSL VPN-Plus
search cancel

VMware NSX AD authentication for SSL VPN-Plus

book

Article ID: 309077

calendar_today

Updated On:

Products

VMware NSX

Issue/Introduction

Symptoms:

  • Configure AD authentication for SSL VPN-Plus fails with invalid username or password when trying to authenticate.
     
  • Local authentication works with out any issues.

Environment

VMware NSX for vSphere 6.4.x

Resolution

To troubleshoot this issue:

  • Use ldapserch to check whether Bind and Search is working properly in the environment.
    Note: ldapsearch tool can be found on edge gateway logging as root or use the tool from any other linux vm that have ldap-utils installed.

     
  • for un-encrypted channel:
    ldapsearch -D "BIND OU" -b "SEARCH OU" -W -H ldap://<ipaddress>:398
     
  • Encrypted channel:
    ldapsearch-D "BIND OU" -b "SEARCH OU" -W -H ldap://<ipaddress>:636