Need help on configuring LDAP over SSL issue on AD LDS. I got "cannot open connection" error when I finished configured LDAP ssl on AD LDS. The error code returned from ldap_connect() is 81 "server down". Does anybody have any clue about this error? When I build the ldaps connection , I typed the name "A.X.Y.Z"in the server textbox. And the common name of the certificate is "A.X.Y.Z" as well. And the returned "dnsHostName" when I establish non-secure connection to this AD LDS instance is "A.X.Y.Z" as well. Did I do the right thing? Another question, how to dertermine the FQDN of the AD LDS instance? I forgot the FQDN I specified when I was installing AD. thanks for your help in advance.

Hi, Thanks for posting in Microsoft TechNet forums. The "cannot open connection" error can be received while LDAP-over-SSL binding is not configured properly. Here are two articles which can be useful to you during the troubleshooting: LDAP over SSL (LDAPS) Certificate http://social.technet.microsoft.com/wiki/contents/articles/2980.ldap-over-ssl-ldaps-certificate.aspx Troubleshooting LDAP Over SSL http://blogs.technet.com/b/askds/archive/2008/03/13/troubleshooting-ldap-over-ssl.aspx Regards Kevin

Dear Kevin Thanks very much! With the instructions provided by you, now I can configure LDAPS successfully on my computer. I have another question, how to know which cipher suites that used in SSL connection are supported in AD LDS? And if I 'd like to only make some specified cipher suites work in current ssl session, how should I do? thanks for your help. Regards