Solved

Secure LDAP in 2003.

Posted on 2010-11-16
8
699 Views
Last Modified: 2013-12-04
Hi,
we are planning to enable secure LDAP for my active directory infrastructure. We have all of our DCs running on 2003 servers in 32 bit platform.
Somebody telling me that 2003 is already running on secure LDAP and i m also able to connect thru LDP.exe to my domain on port 636. does it proves that secure LDAP is there ?

Please suggest on this..
0
Comment
Question by:pdixit1977
  • 4
  • 4
8 Comments
 
LVL 57

Expert Comment

by:Mike Kline
Comment Utility
Yes if you connect over 636 you are using ldap over ssl

if you couldn't connect via port 636 you would get an error "can't connect or open" > not sure of the exact errror off the top of my head.

Thanks

Mike
0
 
LVL 57

Expert Comment

by:Mike Kline
Comment Utility
I should have googled first :)

http://www.expta.com/2009/11/how-to-test-ldap-over-ssl-connections.html  >> the exact error if it wasn't working is  "Cannot open connection,"

...and if you had isssues the AD team has a great blog entry   http://blogs.technet.com/b/askds/archive/2008/03/13/troubleshooting-ldap-over-ssl.aspx

Thanks
Mike
0
 

Author Comment

by:pdixit1977
Comment Utility
BUT i m able to connect on both 389 adn 636 ports. what does that means ?
0
 
LVL 57

Expert Comment

by:Mike Kline
Comment Utility
you can use either (it is not one or the other)

port 389 is the default LDAP port.
0
Backup Your Microsoft Windows Server®

Backup all your Microsoft Windows Server – on-premises, in remote locations, in private and hybrid clouds. Your entire Windows Server will be backed up in one easy step with patented, block-level disk imaging. We achieve RTOs (recovery time objectives) as low as 15 seconds.

 

Author Comment

by:pdixit1977
Comment Utility
but i dont want to connect over 389 (normal LDAP). how can i configure my domain controllers and apps so that they connect on Secure LDAP only ?
0
 
LVL 57

Accepted Solution

by:
Mike Kline earned 250 total points
Comment Utility
Not sure if that is possible, (meaning every app using LDAP/SSL).  I'll let you know if I find something though.
0
 

Author Comment

by:pdixit1977
Comment Utility
thanks mkline71. will wait for your suggestions on this.

Anybody else can advice on this..
0
 

Author Closing Comment

by:pdixit1977
Comment Utility
thanks
0

Featured Post

Superior storage. Superior surveillance.

WD Purple drives are built for 24/7, always-on, high-definition security systems. With support for up to 8 hard drives and 32 cameras, WD Purple drives are optimized for surveillance.

Join & Write a Comment

Security measures require Windows be logged in using Standard User login (not Administrator).  Yet, sometimes an application has to be run “As Administrator” from a Standard User login.  This paper describes how to create a shortcut icon to launch a…
Disabling the Directory Sync Service Account in Office 365 will stop directory synchronization from working.
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles from a Windows Server 2008 domain controller to a Windows Server 2012 domain controlle…

772 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

10 Experts available now in Live!

Get 1:1 Help Now