AD logging and SSL

I'm syncing CentOS LDAP and Microsoft AD.

Currently I have the CentOS pushing objects to AD over LDAP/389, but I want to use LDAPs/636.  My AD server is a CA, does anyone know how to get the CentOS server to trust the AD server?

and

I can review LDAP logs on the CentOS server regarding the sync, but I where should I look to see what is happening on the AD server?
LrdKanienAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

jwillekeCommented:
how to get "CentOS server to trust the AD server?"

I do not CentOS, but most Linux implementations use OpenSSL for the underlying SSL transport. If CentOS does, then this should work:
http://techies.ncsu.edu/wiki/How_to_get_OpenSSL_to_recognise_an_Active_Directory_CA

How to see "hat is happening on the AD server"?

I wish I knew.

This is the best thing I have found and it is a hack:
http://robbieallen.com/downloads/Recipe15-11.htm

We took this and did some scripting, but as it is NOT in real-time it is not much help in troubleshooting.

-jim
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Databases

From novice to tech pro — start learning today.