RE: [ActiveDir] Start TLS on LDAP (389)
Frank, Unless you have a particular need to use TLS, I'd forego it and use SSL over LDAP. It's easy to set up and manage. Here's a Q Article to guide you step by step on implementation: http://support.microsoft.com/default.aspx?scid=kb;en-us;Q247078 Rick Kingslan - Microsoft MVP [Windows NT/2000] Microsoft Certified Trainer MCSA, MCSE+I - Windows NT / 2000 Any sufficiently advanced technology is indistinguishable from magic. --- Arthur C. Clarke -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Frank Ooms Sent: Friday, October 04, 2002 10:33 AM To: [EMAIL PROTECTED] Subject: [ActiveDir] Start TLS on LDAP (389) Hi, Does anyone know if we can Start TLS on Active Directory port LDAP 389? I am trying to understand how we make secure connections to AD. If we have to use LDAPS, I need to know that quite soon. Rgds, -- Frank P. Ooms[EMAIL PROTECTED] Principal IT Systems Architect Schlumberger IT Standards Planning Tel: +31 70 3105454 Fax: +31 70 05 463 Mobile: +31 6 51280369 List info : http://www.activedir.org/mail_list.htm List FAQ: http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir% 40mail.activedir.org/ List info : http://www.activedir.org/mail_list.htm List FAQ: http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
RE: [ActiveDir] Start TLS on LDAP (389)
Support for Start TLS defined in RFC 2830 (http://www.ietf.org/rfc/rfc2830.txt) is not available until .NET AD. If you have a copy of .NET you can play with TLS via LDP Options TLS StartTLS/StopTLS. As far as W2K AD goes, you'll need to use SSL as Rick mentioned. For the curious, MSDN has a pretty good overview of TLS (URL may break): http://msdn.microsoft.com/library/default.asp?url=/library/en-us/security/se curity/transport_layer_security_tls_protocol.asp Robbie Allen -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Frank Ooms Sent: Friday, October 04, 2002 10:33 AM To: [EMAIL PROTECTED] Subject: [ActiveDir] Start TLS on LDAP (389) Hi, Does anyone know if we can Start TLS on Active Directory port LDAP 389? I am trying to understand how we make secure connections to AD. If we have to use LDAPS, I need to know that quite soon. Rgds, -- Frank P. Ooms[EMAIL PROTECTED] Principal IT Systems Architect Schlumberger IT Standards Planning Tel: +31 70 3105454 Fax: +31 70 05 463 Mobile: +31 6 51280369 List info : http://www.activedir.org/mail_list.htm List FAQ: http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir% 40mail.activedir.org/ List info : http://www.activedir.org/mail_list.htm List FAQ: http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir% 40mail.activedir.org/ List info : http://www.activedir.org/mail_list.htm List FAQ: http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/