Click here to get back home

Setting up Secure LDAP (LDAPS) on Windows Server 2008

 HomeNewsGroups | Search
Login Password
Register Now! Lost Password?

microsoft.public.windows.server.security - Supporting MS Windows network? Read here before it's too late! 
get this group's latest topics as an RSS feed add this group's latest topics to your My MSN content add this group's latest topics to your My Yahoo content
Subject Author Date
Setting up Secure LDAP (LDAPS) on Windows Server 2008 Andrew Hodgson 03-08-2009
Posted by Andrew Hodgson on March 8, 2009, 12:37 pm
Please log in for more thread options
Hi,

I have an external app which requires LDAP integration with our
domain. I want to use LDAPs for this. Is it correct that to do this
I need to install an enterprise CA on the domain? If so, does this
need to be a separate server, or can it be on the domain controller?

Our domain is 2008 native upgraded from Windows 2000 native.

Thanks.
Andrew.

Posted by Meinolf Weber [MVP-DS] on March 8, 2009, 1:32 pm
Please log in for more thread options
Hello Andrew,

Have a look here:
http://technet.microsoft.com/en-us/library/cc725767.aspx

Best regards

Meinolf Weber
Disclaimer: This posting is provided "AS IS" with no warranties, and confers
no rights.
** Please do NOT email, only reply to Newsgroups
** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm


show/hide quoted text



Posted by Jorge de Almeida Pinto [MVP - on April 17, 2009, 3:22 am
Please log in for more thread options
for LDAPS you need a certificate, one provided by your own CA or by a third
party CA. Preferably a CA is NOT installed on a DC. Because you just need a
cert it does not mean you just need to install an enterprise CA. What I mean
is, that you need to make a design for the PKI infrastructure. By just
starting to install stuff without thinking is definitely a very bad practice
and in the end you might even regret it.

How to design a PKI infrastructure?

To get an impression, start reading:
http://www.windowsecurity.com/articles/Microsoft-PKI-Quick-Guide-Part1.html

--

Cheers,
(HOPEFULLY THIS INFORMATION HELPS YOU!)

# Jorge de Almeida Pinto # MVP Identity & Access - Directory Services #

show/hide quoted text
------------------------------------------------------------------------------------------
* This posting is provided "AS IS" with no warranties and confers no rights!
* Always test ANY suggestion in a test environment before implementing!
------------------------------------------------------------------------------------------
#################################################
#################################################
------------------------------------------------------------------------------------------

show/hide quoted text


Similar ThreadsPosted
Re: Setting up Secure LDAP (LDAPS) on Windows Server 2008 April 17, 2009, 3:57 am
Re: Setting up LDAPs on Windows Server 2008 March 5, 2009, 5:04 pm
Setting up LDAPS July 11, 2007, 2:41 pm
Secure SSL with LDAP and AD May 20, 2008, 11:23 am
fail to contact windows 2003 LDAP server to retrive new CRL. August 22, 2006, 6:11 pm
Looking for best practices for setting up secure user home directory file structure October 6, 2006, 8:47 pm
Windows 2008 CA can't issue to Windows 2003 server June 25, 2008, 11:53 am
RDP over VPN to Windows Server 2008 November 5, 2008, 11:46 am
Windows Server 2008 UAC April 1, 2009, 8:01 am
RDP on Windows 2008 Server July 14, 2009, 10:39 am

Our other projects:

Art Dolls, Fairies and Mermaids - Sunnyfaces.net

Driving a better car - Fuelzilla.com

Cabling site for homeowners and pros alike - Cabling-Design.com

Friends:

Roy's Linux, Programming and Search Engines messages

1-Script XML SitemapXML Sitemap
Privacy Policy