Solved

LDAP over SSL using mail server's cert

Posted on 2013-12-06
3
645 Views
Last Modified: 2013-12-09
I'm setting up a help desk ticketing system that's cloud hosted, and I'd like to give it access to my LDAP server so that users can login to the help desk with their familiar passwords.  I want to use SSL for security. I have a mail server/DC that has an SSL cert and public IP, and I'd like to know if I just open port 636 through my firewall and use the mail server's URL (mail.domain.com) would that work? Any suggestions are appreciated.
0
Comment
Question by:Brad212
  • 2
3 Comments
 
LVL 30

Accepted Solution

by:
renazonse earned 50 total points
ID: 39702378
Yes but you'll have to add the certificate to the cert store on the server to for the client/server handshake to happen. Below is the instructions:

http://support.microsoft.com/kb/321051/en-us

If you have a Digicert certificate you can generate a duplicate to do this.
0
 

Author Comment

by:Brad212
ID: 39702430
Thank you, very helpful. Do I need a third party CA to accomplish this? Or could I just install the CA role on the server and not bother with a 3rd party CA?
0
 
LVL 30

Expert Comment

by:renazonse
ID: 39702446
As long as the server connecting to the LDAP server trusts the certificate it will work.
0

Featured Post

How to improve team productivity

Quip adds documents, spreadsheets, and tasklists to your Slack experience
- Elevate ideas to Quip docs
- Share Quip docs in Slack
- Get notified of changes to your docs
- Available on iOS/Android/Desktop/Web
- Online/Offline

Join & Write a Comment

Disabling the Directory Sync Service Account in Office 365 will stop directory synchronization from working.
Since pre-biblical times, humans have sought ways to keep secrets, and share the secrets selectively.  This article explores the ways PHP can be used to hide and encrypt information.
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…

757 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

22 Experts available now in Live!

Get 1:1 Help Now