• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 478
  • Last Modified:

setting up ldaps on active directory

We now need to authenticate to our university active directory.  In order to do that they require our domain controller use ldaps.  Am I required to get a certificate for this?  I've read several articles on how to do this and some say you have to order a certificate and others look like you don't.  I have no clue so thought I'd better ask for the correct process.
0
cindyfiller
Asked:
cindyfiller
  • 3
  • 2
1 Solution
 
ArneLoviusCommented:
Your questions is not quite clear.

Is this a Domain Controller operated by the University, or a Domain Controller operated by yourself ?

If the Domain Controller is operated by the University and they require you to use LDAPS against it, then unless the Domain Controller uses a public certificate you would need the public root certificate of the University CA on your client.

If it is your own Domain Controller, you have three main options, which in my order of preference would be

1/ configure your own root CA server
2/ use a public certificate
3/ use a self signed certificate

You can use AD to "push" the root certificate to Domain joined Windows clients, for all other clients you would need to use another method to distribute the root certificate.
0
 
cindyfillerAuthor Commented:
Their system needs to come in to authenticate to the active directory on my domain controller.  

Can you provide steps for doing #1 if that is your recommendation?
0
 
Jamie McKillopCommented:
Hello,

You are best off using a public certificate. They are inexpensive and it isn't worth the hassle of tryng to setup your own CA.

JJ
0
Concerto Cloud for Software Providers & ISVs

Can Concerto Cloud Services help you focus on evolving your application offerings, while delivering the best cloud experience to your customers? From DevOps to revenue models and customer support, the answer is yes!

Learn how Concerto can help you.

 
ArneLoviusCommented:
0
 
cindyfillerAuthor Commented:
Will these same instructions work for windows server 2008?  I noticed these are for 2003.
0
 
ArneLoviusCommented:
From the first paragraph.

 "Applies to Windows Server 2003, Windows Server 2003 R2, Windows Server 2008, Windows Server 2008 R2"
0

Featured Post

Free Tool: Subnet Calculator

The subnet calculator helps you design networks by taking an IP address and network mask and returning information such as network, broadcast address, and host range.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

  • 3
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now