Velocity Reviews - Computer Hardware Reviews

Velocity Reviews > Newsgroups > Computing > Cisco > Cisco Secure ACS and SSL LDAP

Thread Tools

Cisco Secure ACS and SSL LDAP

Silvio Arcangeli
Posts: n/a
Hi everybody,
sorry if I post again on this topic. I discovered some new things about this
issue, and I saw that previous threads on the same topic had no follow ups,
so I thought someone could be interested in it.

I'm setting up a Cisco ACS server to perform authentications against a Java
LDAP server. I managed to correctly configure ACS (clear-text
authentications on port 389 are working fine), and to correctly configure my
LDAP server (SSL connections from Java clients are working fine).
I managed to build a cert7.db file (through an old version of Mozilla),
containing the certificate used by the LDAP server.
But still it seems that ACS is not able to connect to the LDAP through SSL.

So I went on, and through the SSLTAP tool contained in the NSS library I
tracked the SSL traffic between ACS and the LDAP server.

What I got was this log:

I also tracked a correct handshaking (with a Java client), and the log was
this one:

I don't know much about SSL... but from what I could understand I'm starting
to doubt that the problem is that ACS and the Java LDAP server have no
common encryption algorhitms.
Is there anyone who can confirm this doubt or explain what happens?

thank you very much,
Silvio Arcangeli

Reply With Quote

Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
Cannot login from ACS Admin -Cisco ACS 3.1 Sakirana Karabudak Cisco 5 12-16-2009 04:49 PM
Cisco ACS and Windows 2003 SP1 "ldap server not found" DaveW Cisco 1 10-06-2005 08:54 PM
Using Cisco ACS with LDAP Cisco 1 07-26-2005 04:07 AM
Cisco Secure ACS 3.1 and Windows 2000 Active directory mikester Cisco 1 11-07-2003 06:22 AM
Using Cisco ACS to authenticate against LDAP through SSL Silvio Arcangeli Cisco 0 10-20-2003 11:08 AM