> Used LDAP Browser and it fails with the following message: > > CA certificate is not in the server certificate chain > > So I've used the keytool to import the all three: > > 1 - Comodo CA > 2 - the intermediate/root cert of the server > 3 - the cert of the server itself. > > Restarted and it still complains with the above message. > > I'm confused as to which cert/s need to be imported using the keytool.
If you're using LDAP Browser to test your AD server, it's going to give you that error until your AD server has the complete certificate chain installed. That has nothing to do with CF needing the certificate(s) installed. I recommend you install the entire certificate chain there too, just to avoid potential problems. Dave Watts, CTO, Fig Leaf Software http://www.figleaf.com/ http://training.figleaf.com/ Fig Leaf Software is a Veteran-Owned Small Business (VOSB) on GSA Schedule, and provides the highest caliber vendor-authorized instruction at our training centers, online, or onsite. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:357348 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
