Enabling LDAP over SSL

[Neil Ruston]

I have an app which needs to communicate to a DC over
LDAPS.

I have installed a generated cert at the DC (using
Internet Explorer) and have also installed a cert for the
CA root and its intermediary.

When viewed in IE (Tools/Options/Content/Certs) the cert
path looks fine and all the attributes of the cert look
fine too. [The original request to the CA admin specified
that the cert was required for LDAP over SSL
communication].

However, if I use LDP to establish a LDAPS session (on
port 636) at the DC to itself I receive an error 'failed
to open connection'. Furthermore, using netstat, I do not
see any reference to port 636, which I would expect to see
listed as a listening port(?)

Any suggestions how to troubleshoot and rectify this issue?

Thanks,
Neil

 

[Guest]

-----Original Message-----
I have an app which needs to communicate to a DC over
LDAPS.

I have installed a generated cert at the DC (using
Internet Explorer) and have also installed a cert for the
CA root and its intermediary.

When viewed in IE (Tools/Options/Content/Certs) the cert
path looks fine and all the attributes of the cert look
fine too. [The original request to the CA admin specified
that the cert was required for LDAP over SSL
communication].

However, if I use LDP to establish a LDAPS session (on
port 636) at the DC to itself I receive an error 'failed
to open connection'. Furthermore, using netstat, I do not
see any reference to port 636, which I would expect to see
listed as a listening port(?)

Any suggestions how to troubleshoot and rectify this issue?

Thanks,
Neil

.

Neil,
Out of curiosity, are you installing Websphere Portal
server? I ran into similar issues when installing it and
have a solution. You can e-mail me at (e-mail address removed)
and I'll give you the info.
Dave