Solved

Citrix LDAP help

Posted on 2016-07-14
3
34 Views
Last Modified: 2016-10-25
Hi,

we have upgraded our DC recently and unfortunately, our domain is not a registered domain. It is XXXX.CENTRAL. As per the new rules of CA, we cannot get a trusted certificate for a non-registered domain. LDAP is rejecting our authentication, due to that. I cannot get rid of my old DC because it has a valid certificate running.

I wanted a solution such that I can by pass the certificate purchase.
0
Comment
Question by:ajoyrajan
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 24

Expert Comment

by:Dirk Kotte
ID: 41712854
you have to recreate the certificate trust.
with no public CA you have to import the certificate of issuing CA (and existing Sub-CA's) as trusted.

which component try to authenticate at which device?
Netscaler to AD?
netscaler to storefront?
other...?
do you get the error if you try to use LDAP-SSL?
0
 
LVL 1

Accepted Solution

by:
ajoyrajan earned 0 total points
ID: 41742360
Hi

Thanks for the reply, but we have resolved the issue by changing the LDAP to plaintext and RSA device to point to the new DC.
0
 
LVL 1

Author Closing Comment

by:ajoyrajan
ID: 41748468
Resolved it myself.
0
Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In-place Upgrading Dirsync to Azure AD Connect
A hard and fast method for reducing Active Directory Administrators members.
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…
Attackers love to prey on accounts that have privileges. Reducing privileged accounts and protecting privileged accounts therefore is paramount. Users, groups, and service accounts need to be protected to help protect the entire Active Directory …

705 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question