Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements
New Member

Ironport Ignores LDAP authentication

Hello friends,

I have deployed a virtual Web Security Appliace, but it seems to be ignoring LDAP authentication. I have configured an identity and and an Access Policy for test, allowing my IP address. The results are good, I get the next logs:

1407538916.616 6 192.168.211.110 TCP_MISS/304 311 GET http://crl.microsoft.com/pki/crl/products/MicRooCerAut2011_2011_03_22.crl - DIRECT/crl.microsoft.com application/pkix-crl DEFAULT_CASE_12-PRUEBA_TEST-NONE-NONE-NONE-DefaultGroup <IW_comp,6.9,0,"-",0,0,0,-,"-",-,-,-,"-",-,-,"-","-",-,-,IW_comp,-,"-","-","Unknown","Unknown","-","-",414.67,0,-,"Unknown","-",-,"-",-,-,"-","-"> -

 

But, when I try with an authenticated user, it sends me the next logs:

1407537301.825 1 192.168.212.89 TCP_DENIED/407 0 CONNECT tunnel://mail.google.com:443/ - NONE/- - OTHER-NONE-LDAP_IDENTITY-NONE-NONE-NONE-NONE <-,-,-,"-",-,-,-,-,"-",-,-,-,"-",-,-,"-","-",-,-,-,-,"-","-","-","-","-","-",0.00,0,-,"-","-",-,"-",-,-,"-","-"> -

1407537346.874 1 192.168.212.89 TCP_DENIED/407 0 CONNECT tunnel://mail.google.com:443/ - NONE/- - OTHER-NONE-LDAP_IDENTITY-NONE-NONE-NONE-NONE <-,-,-,"-",-,-,-,-,"-",-,-,-,"-",-,-,"-","-",-,-,-,-,"-","-","-","-","-","-",0.00,0,-,"-","-",-,"-",-,-,"-","-"> -

 

Any idea or documentation will be appreciated,

Regards!

176
Views
0
Helpful
0
Replies
CreatePlease to create content