AD - LDAP querry and refferals - APM
Hello,
I cannot find a similar setup being discussed so I am trying my luck. We have an F5 with APM module. It uses and AD server for LDAP queries. The users connect to the logon page shown by the APM and provide their credentials. We have 2 sets of users. Some users are configured on the AD server. When the F5 APM runs an LDAP query for them it gets back a Success message and the policy continues to be processed (it is a SSL VPN). But we have some users that are not configured in this AD server but on an external one. The AD server we querry has a trust relationship (one way) with the external AD server, so our idea was to query our own AD server hoping it will talk to the external one and get a successful LDAP query. But instead I see that our internal AD server returns a referral and that is seen by the F5 as an error and stops. I am getting this type of messages in the access policy event log: 'session.ldap.last.errmsgext' set to '0000202B: RefErr: DSID-0310082F, data 0, 1 access points'
Has anyone had any experience with a similar setup and what could be done?
Regards Carol