Solved

Certification Authority Windows 2003 Server and Sonicwall and LDAP

Posted on 2012-03-14
1
369 Views
Last Modified: 2012-03-14
Hi everyone,

I have done some research for what I need to do, but have some problems still.

1) I want to enable TLS in my sonicwall when setting up LDAP authentication from the Sonicwall NSA 240 device over to my DC which is Windows 2003.

I have already succesfully binded LDAP over port 389 (No SSL).

I have already followed these steps for setting up the CA and the sonicwall part:
https://www.fuzeqna.com/sonicwallkb/consumer/kbdetail.asp?kbid=7813

Its all peachy, but it still does not connect when trying to do it over the SSL port 636,

Does anyone have any insight as to what I am missing or doing wrong?

I had no CA in the windows 2003 server, so its newly setup per the previous link.
LDAP binds and connects ok from anywhere in network so firewall is not an issue.

Let me know if you need more info.

Thanks!!
0
Comment
Question by:ldelgado2323
1 Comment
 

Accepted Solution

by:
ldelgado2323 earned 0 total points
ID: 37722350
Ok, nevermind! I figured it out...

It seems I had an invalid certificate, if you uncheck the "Require valid certificate" on the users settings in Sonicwall, it will still connect via SSL, just will not validate the identity of the originating device (still need to fix) but its just a matter of reconfiguring the CA server.

Post me a message if anyone has similar problems.

Thanks!
0

Featured Post

Free Gift Card with Acronis Backup Purchase!

Backup any data in any location: local and remote systems, physical and virtual servers, private and public clouds, Macs and PCs, tablets and mobile devices, & more! For limited time only, buy any Acronis backup products and get a FREE Amazon/Best Buy gift card worth up to $200!

Join & Write a Comment

Scenerio: You have a server running Server 2003 and have applied a retail pack of Terminal Server Licenses.  You want to change servers or your server has crashed and you need to reapply the Terminal Server Licenses. When you enter the 16-digit lic…
I've always wanted to allow a user to have a printer no matter where they login. The steps below will show you how to achieve just that. In this Article I'll show how to deploy printers automatically with group policy and then using security fil…
Internet Business Fax to Email Made Easy - With eFax Corporate (http://www.enterprise.efax.com), you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, fr…
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're looking for how to monitor bandwidth using netflow or packet s…

757 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

20 Experts available now in Live!

Get 1:1 Help Now