configure LDAP over SSL isuse on AD LDS
Need help on configuring LDAP over SSL issue on AD LDS. I got "cannot open connection" error when I finished configured LDAP ssl on AD LDS.
The error code returned from ldap_connect() is 81 "server down". Does anybody have any clue about this error?
When I build the ldaps connection , I typed the name "A.X.Y.Z"in the server textbox. And the common name of the certificate is "A.X.Y.Z" as well.
And the returned "dnsHostName" when I establish non-secure connection to this AD LDS instance is "A.X.Y.Z" as well. Did I do the right thing?
Another question, how to dertermine the FQDN of the AD LDS instance? I forgot the FQDN I specified when I was installing AD.
thanks for your help in advance.
August 29th, 2012 6:46am
Hi,
Thanks for posting in Microsoft TechNet forums.
The "cannot open connection" error can be received while LDAP-over-SSL binding is not configured properly.
Here are two articles which can be useful to you during the troubleshooting:
LDAP over SSL (LDAPS) Certificate
http://social.technet.microsoft.com/wiki/contents/articles/2980.ldap-over-ssl-ldaps-certificate.aspx
Troubleshooting LDAP Over SSL
http://blogs.technet.com/b/askds/archive/2008/03/13/troubleshooting-ldap-over-ssl.aspx
Regards
Kevin
Free Windows Admin Tool Kit Click here and download it now
August 30th, 2012 1:49am
Dear Kevin
Thanks very much! With the instructions provided by you, now I can configure LDAPS successfully on my computer.
I have another question, how to know which cipher suites that used in SSL connection are supported in AD LDS? And if I 'd like to only make some specified cipher suites work in current ssl session, how should I do? thanks for your help.
Regards
August 30th, 2012 5:53am