Re: LDAPS on 2k3

Tech-Archive recommends: Fix windows errors by optimizing your registry

From: "Joe Kaplan" <joseph.e.kaplan@xxxxxxxxxxxxxxxxxxxxxxxx>
Date: Wed, 29 Jul 2009 08:16:59 -0500

So, just to review:

The cert is really in the LOCAL MACHINE store "personal" container (not the Current User store)
The Windows UI says "this certificate has a private key" when you open the certificate
The Windows UI shows the certificate as "ok" and the path tab shows the full cert chain

I'm not sure what you are talking about with "trusted sites" as there is no container with that name that I'm aware of.

--
Joe Kaplan-MS MVP Directory Services Programming
Co-author of "The .NET Developer's Guide to Directory Services Programming"
http://www.directoryprogramming.net
"Irv" <Irv@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message news:621B3F98-EA3A-42AE-B530-C9AE04E1AEC9@xxxxxxxxxxxxxxxx

I'd take a look at http://support.microsoft.com/kb/321051.
It details how to do it with a 3rd party or Microsoft CA

HTH

Irv

"jwbernin" wrote:

Actually, yes - the event log shows a Warning that "no appropriate
certificates could be found". I spent about 3 hours trying to google
that error, nd couldn't find anything other than "make sure the DNS name
matches the subject name", which I checked about 10 times, and "put the
cert in the trusted sites folder", which I did and still wasn't able to
talk LDAPS. I did see something about a DC certificate for client
authentication, but beyond a little blurb that I couldn't figure out I
saw nothing.

Sorry for sounding like an idiot here - I'm a linux guy by preference,
but I'm the only one in my group who can deal with Windows effectively
so I get thrown into the shark tank.

--
jwbernin
------------------------------------------------------------------------
jwbernin's Profile: http://forums.techarena.in/members/117913.htm
View this thread: http://forums.techarena.in/active-directory/1222038.htm

http://forums.techarena.in

Follow-Ups:
- Re: LDAPS on 2k3
  - From: jwbernin

References:
- Re: LDAPS on 2k3
  - From: Irv

Prev by Date: Re: LDAPS on 2k3
Next by Date: Re: AD Object Not updated
Previous by thread: Re: LDAPS on 2k3
Next by thread: Re: LDAPS on 2k3
Index(es):
- Date
- Thread

Relevant Pages

Re: Connecting PDA/Phone to Web Services using SSL?
... I even used the SslChainSaver tool that Scott(from the Windows ... only the root cert was required. ... make a successful connection to the web service using SSL. ... a Windows 2003 AD domain with Certificate Services installed on the DC. ...
(microsoft.public.dotnet.framework.compactframework)
RE: updates after format
... if the Microsoft Server is down. ... software you are installing has not passed Windows Logo testing verify its ... When you try to download an ActiveX control, install an update to Windows ... and you do not have the appropriate certificate in your Trusted Publishers ...
(microsoft.public.windows.mediacenter)
Re: Need help configuring Wireless Connection profile
... and I can only use the intel OR windows utility, not both at the same time. ... Windows authentication for all users,4129,LRG\ryanv,4149,Wireless WPA2 ... SMALL BUSINESS SERVER: ... STEP #1 Install Certificate Services ...
(microsoft.public.windowsxp.general)
RE: Storing certificate on a hardware token (SC)
... The usual way is to get context to the token's CSP (each token vendor has its ... Next you create a container and within that ... KP_CERTIFICATE to add the cert to the key. ... Note that in order to use the certificate from generic Windows applications ...
(microsoft.public.platformsdk.security)
Re: Windows Update repeats
... You cannot install some updates or programs ... to a Windows component, install a service pack for Windows or for a Windows ... The Microsoft digital signature affirms that software has been tested with ... Publishers certificate store. ...
(microsoft.public.windowsupdate)