# create an access profile
edit access profile JSC-RA-PROFILE
set authentication-order ldap
# use an existing address pool
set address-assignment RAS-POOL1
# reset the values for windowsdomain companyname and local approriately for your windows domain
set ldap-options base-distinguished-name DC=windowsdomain,DC=companyname,DC=local
# gotta have this line as is
set ldap-options search search-filter sAMAccountNAme=
# create a non-admin account to authenticate users. make sure you have CN correct for this user
# if you think there may be (or may not be) a space in the CN - use ADSI (inside the windows administrative tools)
# to make sure you have it correct
set ldap-options search admin-search distinguished-name CN=VPNAuth,CN=Users,DC=windowsdomain,DC=companyname,DC=local
# password for VPNAuth
set ldap-options search admin-search password "MyPasswordInWindowsForVPNAuth"
# server(s) ip address(es)
set ldap-server 192.168.11.99 port 389
have a nice day!
Original Message:
Sent: 05-17-2021 09:56
From: Mohammad Rummaneh
Subject: SRX-Juniper Secure Connect - LDAP
hello Folks
any body did integration between ldap and juniper srx ( juniper secure connect - dynamic vpn )
Please share configuration example if you have :)
BR
Mohammad R.
------------------------------
Mohammad Rummaneh
------------------------------