42 Troubleshooting authentication tasks
3
4
5
6
7
8
9
10
Copyright © 2007 Nortel Networks
.
Add LDAPS server with port 636.
/cfg/vpn 1/aaa/auth 3/ldap/servers/add
IP Address to add: 172.1.1.200
Port (default is 389): 636
Click Apply.
Generate a test cert and export for use on the AD server.
/cfg/cert2
ATTENTION
The CN must match the FQDN of the actual AD server.
Click Apply to activate.
Login to AD server and open MMC.
Add certificate store snap-in for Local Computer.
In the Console wizard, under file menu, select Add/Remove
Snap-in.
Add/Remove Snap-in form appears.
Click Add.
Add Standalone Snap-in form appears.
Nortel VPN Gateway
Troubleshooting Guide
NN46120-700 01.01 Standard
12 October 2007