Signing LDAP Without Certificate Services

From: Irwin Fletcher <ffletch@xxxxxxxxxxxxx>
Date: Tue, 22 May 2007 11:43:04 -0400

Is there any way to require that all LDAP traffic on a Server 2003 domain controller is signed without having certificate services installed anywhere in the AD? I have several external apps that authenticate against my AD using LDAP. All of them have the ability to to startTLS/ssl but it appears that this won't work unless I have a certificate (from cert services?) installed. I was thinking it might be possible to use a self generated cert?
.

Follow-Ups:
- Re: Signing LDAP Without Certificate Services
  - From: Joe Kaplan

Prev by Date: Re: Unable to run this command
Next by Date: Forest Functional Level?
Previous by thread: Active Directory Printer Issue
Next by thread: Re: Signing LDAP Without Certificate Services
Index(es):
- Date
- Thread

Relevant Pages

Re: Client performance problem windows 2003 server...
... >Subject: Re: Client performance problem windows 2003 server... ... >Deploying Active Directory for Branch Office Environments ... >results from not having a domain controller in a particular site. ... incorrectly applied site coverage will be bad for clients ...
(microsoft.public.windows.server.networking)
Re: Client performance problem windows 2003 server...
... Testing server: Verkstadsgatan\VERKTYG ... Deploying Active Directory for Branch Office Environments ... results from not having a domain controller in a particular site. ... incorrectly applied site coverage will be bad for clients ...
(microsoft.public.windows.server.networking)
RE: NTDS.dit file is currupt
... "microsoft" wrote:> We are currently facing a serious problem with one our client server. ... > After rebooting the machine in directory services restore mode, I had> followed the steps below; ntdsutil neither defrag Active Directory Database> nor repair. ... Restart the domain controller. ... Check the integrity of the Active Directory database. ...
(microsoft.public.win2000.active_directory)
Re: Thoroughly confused SBS 2003 Server
... fact I first had SBS running on the box that now has the Server Enterprise ... A year ago or moe I put up the second server and made it a domain controller ... The replication generated an error: ...
(microsoft.public.windows.server.sbs)
Re: Big trouble with DC in China
... > Since then, this server has so may errors in the event logs (KCC, ... > DNS, FRS) that I wouldnt know where to start. ... > Source domain controller address: ...
(microsoft.public.windows.server.active_directory)