LDAPS on Windows 2003

Posted on 2013-08-29
Medium Priority
Last Modified: 2013-09-09
My goal here is to get my SonicWALL TZ270 to use LDAPS with my Windows 2003 DC.  Right now I cannot even verify that LDAPS is working at all.

On my Windows 2003 server, in CMD, I can "TELNET LOCALHOST 636" and it seems to make a connection to that port, but when I use LDP and connect to LOCALHOST on port 636 it says "Can't open connection.

I have been all over Google Land today and have read plenty of sites, but nothing is catching.  Several sites said that all you need to do is install CA and then bam! it works.  But I installed CA and it isn't working.

I read on this link LDAPS that you need certain requirements for it to work.  I ran the "Certutil –VerifyStore MY" command and my printed results do not match what this article is saying.  For instance, my Subject is not "CN=servername.Contoso.local" it is "CN=servername, DC=Contoso, DC=Local".  I'm not sure that it matters.

Also I do not have the Server Authentication OID: and I don't know how to get it in there.
Question by:jekautz
  • 3

Author Comment

ID: 39453052
I have tried the instructions at


And it doesn't work.  I copied the text in Step1 and pasted into Notepad.  I changed the subject to "servername.Contoso.local", (and I also tried "CN=servername, DC=Contoso, DC=Local"), saved the file as request.inf and used certreq to turn it into a req file.

Next, I open CA and right-click on my server, all tasks, submit new request. When I pick that req file I get this error:

The request contains no certificate template information. 0x80094801 (-2146875391). Denied by policy module 0x80094801. The request does not contain a certificate template extension or the certificate template request attribute.

Accepted Solution

jekautz earned 0 total points
ID: 39465978
I solved the CA error by uninstalling my Enterprise CA and installing a Standalone Root CA.

Author Closing Comment

ID: 39475828
My post stalled and I did not receive the resolution from any of the posts by other members.

Featured Post

Free Tool: Subnet Calculator

The subnet calculator helps you design networks by taking an IP address and network mask and returning information such as network, broadcast address, and host range.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

The HP utility "HP Lights-Out Online Configuration Utility for Windows Server 2003/2008" could be of great use when it comes to remotely configure a HP servers ILO WITHOUT rebooting the server. We would only need to create and run scripts using thi…
ADCs have gained traction within the last decade, largely due to increased demand for legacy load balancing appliances to handle more advanced application delivery requirements and improve application performance.
From store locators to asset tracking and route optimization, learn how leading companies are using Google Maps APIs throughout the customer journey to increase checkout conversions, boost user engagement, and optimize order fulfillment. Powered …
If you are looking for an automated tool which can generate reports for Outlook emails and other items from PST file, then you can go for Kernel PST Reporter tool. The reports which are created by this tool are helpful to analyze and understand PST …

627 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question