Announcement

Collapse
No announcement yet.

Need help for LDAPS configuration

Collapse
X
  • Filter
  • Time
  • Show
Clear All
new posts

  • Need help for LDAPS configuration

    I was asked by our website developer to configure LDAPS for getting web users authenticated via AD. Please help me to get this configured.I installed CA on DC asuming tht enterprise CA will take cae of certificate things but whn i try to connect LDAPS via ldp.exe..it gets failed. LDAP(389 Port works fine) but not 636 SSL.

  • #2
    ask you web developer for assistance as it usually depends on the software you are using to authenticate than the directory service

    Comment


    • #3
      You should make a design first about a PKI environment before going into such thing.
      So you might start reading here:
      http://blogs.technet.com/b/askds/arc...-planning.aspx
      http://kazmierczak.eu/itblog/2012/08...icrosoft-adcs/

      After a good read on designing a PKI and understanding that a CA should not be on a DC, then you should start reading over here
      https://www.petri.com/enable-secure-...r-2008-2012-dc
      Marcel
      Technical Consultant
      Netherlands
      http://www.phetios.com
      http://blog.nessus.nl

      MCITP(EA, SA), MCSA/E 2003:Security, CCNA, SNAF, DCUCI, CCSA/E/E+ (R60), VCP4/5, NCDA, NCIE - SAN, NCIE - BR, EMCPE
      "No matter how secure, there is always the human factor."

      "Enjoy life today, tomorrow may never come."
      "If you're going through hell, keep going. ~Winston Churchill"

      Comment


      • #4
        You can go here for reference:
        https://www.freebsd.org/doc/en/artic...auth/ldap.html

        Comment


        • #5
          When you installed the CA on the DC (which, by the way, is far from being a "best practice"), did you verify it got the correct certificate assigned to it? Let's start there.
          Cheers,

          Daniel Petri
          Microsoft Most Valuable Professional - Active Directory Directory Services
          MCSA/E, MCTS, MCITP, MCT

          Comment

          Working...
          X