LDAPS over SSL - Schannel Event 36872 - "No suitable default server credential exists on this system."
Posted on 2009-02-12
I'm trying to use LDAPS over SSL and running into an Schannel event 36872 which gives the following Warning message in the event log.
"No suitable default server credential exists on this system. This will prevent server applications that expect to make use of the system default credentials from accepting SSL connections. An example of such an application is the directory server. Applications that manage their own credentials, such as the internet information server, are not affected by this."
I also get the Schannel Informational message (Event ID 36867):
"Creating an SSL client credential."
When I try to use ldp.exe to connect on port 636 to my domain controller, I receive the following message:
d = ldap_sslinit("servername.domain.org", 636, 1);
Error <0x51> = ldap_set_option(hLdap, LDAP_OPT_PROTOCOL_VERSION, LDAP_VERSION3);
Error <0x51> = ldap_connect(hLdap, NULL);
Server error: <empty>
Error <0x51>: Fail to connect to servername.domain.org.
I have been through every article dealing with Schannel and LDAPS that Google can find and tried just about everything to get this to work, and I still can't figure out what the issue is.
Anyone ideas would be much appreciated.