|
Posted by S. Pidgorny on June 16, 2007, 7:04 am
Please log in for more thread options
Reboot will indeed correct this. LSASS.exe is the process responsible for
LDAP and you need a reboot to restart it.
--
Svyatoslav Pidgorny, MS MVP - Security, MCSE
-= F1 is the key =-
* http://sl.mvps.org * http://msmvps.com/blogs/sp *
> Best ask in the Security NG. I have copied them in.
>
> --
> Paul Bergson
> MVP - Directory Services
> MCT, MCSE, MCSA, Security+, BS CSci
> 2003, 2000 (Early Achiever), NT
>
> http://www.pbbergs.com
>
> Please no e-mails, any questions should be posted in the NewsGroup
> This posting is provided "AS IS" with no warranties, and confers no
> rights.
>
>> We have MS Certificate Services installed in our domain and the domain
>> controllers use Autoenrollment to obtain certificates and provide
>> Secure LDAP on port 636. One of our DC's, the one running certificate
>> services, is still presenting an expired certificate. It has a new
>> valid one it it's certificate store, but when an SSL client connects
>> to port 636, it's presented with the old cert. I assume the old cert
>> is cached somehow and that a reboot will correct this. However, I'm
>> wondering if there's another way to tell it to clear out that cache
>> and start using the new, valid certificate? This is a Server 2003 box.
>>
>
>
| 
XML Sitemap