dantali0n
asked on
Enable LDAP over SSL - Using Wildcard Cert?
I'm wondering if it's possible to enable LDAP over SSL in Active Directory using a wildcard cert issued from a third party, instead of a per-server cert as listed in the below KB. I'm also wondering how to create a wildcard CSR for the active directory domain. Thanks in advance!
How to enable LDAP over SSL with a third-party certification authority:
http://support.microsoft.com/kb/321051
How to enable LDAP over SSL with a third-party certification authority:
http://support.microsoft.com/kb/321051
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
you can, but if this is for Internal access to AD, I would usually setup an internal CA root server and use domain certificates, they cost a little less...
ASKER
Exactly what I was looking for.
- create wildcard: http://www.justinsamuel.com/2006/03/11/howto-create-a-self-signed-wildcard-ssl-certificate/
- commandline for client to do SNI: http://stackoverflow.com/questions/7497088/openssl-tls-extension-support-configuration-server-name-indication