Preview Tool

Cisco Bug: CSCut06664 - LDAP server upgrade breaks ESA to LDAPS communication

Last Modified

Mar 07, 2018

Products (1)

  • Cisco Email Security Appliance

Known Affected Releases

7.6.3-019 8.0.1-023 8.5.6-092 9.0.0-500

Description (partial)

Domino LDAP servers patched for POODLE Vulnerability disabled SSLv2 and SSLv3.

ESA starts LDAPS communication with SSLv2 client hello packet.

LDAP server ignores the packet and we cannot negotiate a LDAPS communication channel.

ESA configured for LDAPS communication to an LDAP server
LDAP server does not allow SSLv2 client hello packets.
ESA cannot successfully negotiate a LDAPS communication channel
Bug details contain sensitive information and therefore require a account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.