Re: LDAP/SSL Problem

Tech-Archive recommends: Fix windows errors by optimizing your registry

From: Dmitri Gavrilov [MSFT] (dmitrig_at_online.microsoft.com)
Date: 06/29/04

Next message: Nick Diotte: "ActiveDirectory: Sites and Services - Replicate From/To Help"
Previous message: Marc Speed: "adprep necessary again after Exchange?"
In reply to: Chandru Aroor: "LDAP/SSL Problem"
Next in thread: Dmitri Gavrilov [MSFT]: "Re: LDAP/SSL Problem"
Reply: Dmitri Gavrilov [MSFT]: "Re: LDAP/SSL Problem"
Messages sorted by: [ date ] [ thread ]

Date: Tue, 29 Jun 2004 10:23:06 -0600

1. Make sure the client trusts the cert.
2. Check for errors in DS log and System log on the DC.

-- 
Dmitri Gavrilov
SDE, Active Directory Core
This posting is provided "AS IS" with no warranties, and confers no rights.
Use of included script samples are subject to the terms specified at
http://www.microsoft.com/info/cpyright.htm
"Chandru Aroor" <anonymous@discussions.microsoft.com> wrote in message
news:22de401c45deb$119d5d80$a101280a@phx.gbl...
> For a secure application we plan on using we require SSL
> authentication to LDAP.  I have a CA installed as a
> stand-alone root, on a server called SERVER1.  This does
> not have AD on, and is a stand-alone Win2k3 server.  I
> have another server, Server2 which is a Domain Controller,
> has CA installed as a stand-alone sub-CA to Server1.
> During the sub-CA install I pointed to the RootCA, and
> answered "Yes" to the prompt about trusting the RootCA.
>
> In troubleshooting why LDAP SSL is not working, when I
> execute lpd on Server2 (the DC), it can connect to it's AD
> (i.e LDAP) over the non-ssl port (389). However, when i
> try to connect using the SSL port (636) I get an error.
> (Simple Binf Failed: sername:636).
>
> Any help on debugging this will be truly appreciated.
>
> Thanks,
>
> Chandru
> caroor@yahoo.com
>
> P.S. Sorry for cross-posting to the networking group too.
>

Next message: Nick Diotte: "ActiveDirectory: Sites and Services - Replicate From/To Help"
Previous message: Marc Speed: "adprep necessary again after Exchange?"
In reply to: Chandru Aroor: "LDAP/SSL Problem"
Next in thread: Dmitri Gavrilov [MSFT]: "Re: LDAP/SSL Problem"
Reply: Dmitri Gavrilov [MSFT]: "Re: LDAP/SSL Problem"
Messages sorted by: [ date ] [ thread ]

Relevant Pages

Re: SOS! IIS Stopped working completely!
... Kristofer Gafvert - IIS MVP ... > Vilmar Brazão de Oliveira ... >> application), ASP Application, SQL Server ... >> when I try to load test.asp, I get the DCOM error in system log. ...
(microsoft.public.inetserver.asp.general)
Re: SOS! IIS Stopped working completely!
... Kristofer Gafvert - IIS MVP ... > Vilmar Brazão de Oliveira ... >> application), ASP Application, SQL Server ... >> when I try to load test.asp, I get the DCOM error in system log. ...
(microsoft.public.dotnet.framework.aspnet)
Re: SOS! IIS Stopped working completely!
... Kristofer Gafvert - IIS MVP ... > Vilmar Brazão de Oliveira ... >> application), ASP Application, SQL Server ... >> when I try to load test.asp, I get the DCOM error in system log. ...
(microsoft.public.inetserver.iis)
Re: Receiving CI Service Event 4149 & App Popup Event 333 on Win2k3 SP
... NetLogon Event ID 5719 in the System Log at approx the same time, ... remotely manage and also sometimes RDP to the server (other ... link between SQL and the issue occuring. ...
(microsoft.public.windows.server.general)
Re: DNS Error--David Pharr
... I'm getting FRS errors and in the System log ... I'm getting the message from w32time that our ntp server ... > make the zone a standard primary zone and ensure Allow Dynamic Updates on ... > In a clean install you should always install the latest service pack to ...
(microsoft.public.win2000.active_directory)