Re: LDAP Authentication to AD
From: Shahir A. Ahang (thisisbs.saa_at_thisisbsintrinsic.thisisbsnet)
Date: 02/05/04
- Next message: Microsoft: "Space in usernames is that OK?"
- Previous message: newbie: "How to restrict users to only be able to use IE"
- In reply to: Kimono: "Re: LDAP Authentication to AD"
- Messages sorted by: [ date ] [ thread ]
Date: Thu, 5 Feb 2004 11:14:25 -0600
The thing you have to do is to add the CA which issued the SSL certificates
to the DCs be a trusted CA in your LDAP client.
Shahir
"Kimono" <undisclosed@earth.net> wrote in message
news:OUkeRa86DHA.3304@tk2msftngp13.phx.gbl...
> I've installed the cert-serv, and enabled SSL on the DC's . The DC's have
> sucessfully got their domain controller certificates, but the Address Book
> client (running on a non-domain Win XP) member PC cannot connect to the
LDAP
> server on port 636.
>
> Is there anything else I have to do to allow SSL connections. Port 636 is
> open, I can telnet into it, but the LDAP clients report "the specified
> directory service could not be reached".
>
> Thanks
> KIM
>
>
> "Kimono" <undisclosed@earth.net> wrote in message
> news:%23fGLsk56DHA.1592@TK2MSFTNGP10.phx.gbl...
> > Yes this does indeed work.
> > Presumably that's transferring the password in clear text?
> >
> > I'll try enable SSL over LDAP according to Q247078....
> >
> >
> > "Shahir A. Ahang" <thisisbs.saa@thisisbsintrinsic.thisisbsnet> wrote in
> > message news:OGwR$vz6DHA.3288@TK2MSFTNGP11.phx.gbl...
> > > If you haven't tried yet, I would try to put a DN as the username,
i.e.
> > > CN=username,CN=Users,DC=Compnay,DC=com.
> > >
> > > Shahir
> > >
> > >
> > > "Kimono" <undisclosed@earth.net> wrote in message
> > > news:erbCwCr6DHA.1632@TK2MSFTNGP12.phx.gbl...
> > > > Hi,
> > > >
> > > > How do LDAP clients that are configured with an LDAP Directory
> service,
> > > such
> > > > as Outlook Express, authenticate to a Windows 2003 AD server?
> > > >
> > > > We're finding that no matter what credentials are configured within
> > > Outlook
> > > > Express for that directory service, that the AD server always tries
to
> > > > authenitcate wit the logged on domain user on the client.
> > > >
> > > > Security event log indicates it is using NTLM authenticaition.
> > > >
> > > > This is a problem for us, as we're trying to open up LDAP for
> Macintosh,
> > > > unix, and other LDAP clients for Exchange 2003.
> > > >
> > > > Kim
> > > >
> > > >
> > >
> > >
> >
> >
>
>
- Next message: Microsoft: "Space in usernames is that OK?"
- Previous message: newbie: "How to restrict users to only be able to use IE"
- In reply to: Kimono: "Re: LDAP Authentication to AD"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
