I believe the answer is no based on this info found ina KPoint posting. PANOS 3.1 and above. While you can use any LDAP server for SSL VPN, Captive Portal or Admin access, the User-ID agent is supported by eDirectory. eDirectory modifies an attribute that most LDAP schemas do not contain; networkAddress. The PAN decrypts this field which is stored as a combination of IP address and a 1,3, or 9 to indicate whether the connection is TCP, UDP or whether a TCP port is included. The User-ID agent converts this to an IP address. Additionally, the Timestamp attribute is modified to query only changed entries. Only eDirectory 8.8 is supported because the LDAP Page Control specs are utilized, which are not supported in earlier versions of eDirectory. Steve Krall
... View more