Hi I have SBS 2011 and Zyxel USG firewall. Currently I have LDAP configured in order to authenticate L2TP users against AD. It is working like charm , but I wanted to raise security and there is just one checkbox (SSL) in Zyxel. So I am not sure what I need to do in order to secure communication between SBS 2011 and USG . When I check this SSL and change port from 389 to 636 after some time I can see in usg log BIND failed ! So that means that I am not able anymore to use AD user accounts.
Do I need to create certificate on sbs or not ? Please if somebody can help me I would appreciate it.
There is one more thing , currently L2TP is using PAP, which is unacceptable, and I wanted to configure MS-CHAP . Is there anyone who did this with zyxel ?
Thanks a lot !
Regards
