Hot!Google ldaps as LDAP Server - client certificates

Author
grog
New Member
  • Total Posts : 3
  • Scores: 0
  • Reward points: 0
  • Joined: 2020/02/07 16:14:19
  • Status: offline
2020/02/07 16:33:49 (permalink)
0

Google ldaps as LDAP Server - client certificates

 
Google LDAPS requires client certificates. I found the option to use client certs for FortiAuthenticator (Use Client Certificate for TLS Authentication) but cannot find the same for fortigate. Setting up a LDAP Server on fortigate just provides CA Cert and no way that I can see to upload a client certificate. I am wanting to confirm this is the case, that I didn't miss anything, before I setup stunnel to facilitate the use of client certs as suggested by Google.
 
Thank you,
 
PS I was able to setup JumpCloud as an LDAP Server, but it does not require client certificates.
#1

4 Replies Related Threads

    grog
    New Member
    • Total Posts : 3
    • Scores: 0
    • Reward points: 0
    • Joined: 2020/02/07 16:14:19
    • Status: offline
    Re: Google ldaps as LDAP Server - client certificates 2020/02/14 17:29:45 (permalink)
    0
    With stunnel configured and access credentials for the google fortinet client i created, then all worked well. Will see if I can get a feature request for using client certs in fortigate...
    #2
    warrenkerrigan
    New Member
    • Total Posts : 2
    • Scores: 0
    • Reward points: 0
    • Joined: 2021/07/02 03:31:55
    • Status: offline
    Re: Google ldaps as LDAP Server - client certificates 2021/07/02 03:35:22 (permalink)
    0
    I know this was a long time ago now, but did you ever get any further with this?
    #3
    grog
    New Member
    • Total Posts : 3
    • Scores: 0
    • Reward points: 0
    • Joined: 2020/02/07 16:14:19
    • Status: offline
    Re: Google ldaps as LDAP Server - client certificates 2021/07/04 15:25:52 (permalink)
    0
    No further. Talked with Fortinet but they rejected the feature request because the capability is in the FortiAuthenticator. So I'm still using stunnel. I still feel client certificates should be supported in the Fortinet firewalls since both PAN and pfSense support client certificates in their firewalls (based on what I found with some simple searches).
    #4
    warrenkerrigan
    New Member
    • Total Posts : 2
    • Scores: 0
    • Reward points: 0
    • Joined: 2021/07/02 03:31:55
    • Status: offline
    Re: Google ldaps as LDAP Server - client certificates 2021/07/09 02:59:14 (permalink)
    0
    Thanks for the response. Yes, it does appear a little strange. I will update if I find a nicer solution, but that seems to be the best I can do for now.
    #5
    Jump to:
    © 2021 APG vNext Commercial Version 5.5