So a couple things:
è You'll want to lock down the source IPs on the firewall è The wildcard will work but you will start getting event log errors telling you the cert isn't valid for smartcard auth Thanks, Brian Desmond [email protected] c - 312.731.3132 From: Chyka, Robert [mailto:[email protected]] Sent: Sunday, August 22, 2010 8:31 PM To: NT System Admin Issues Subject: RE: External LDAP Access Question Thanks! Got a good article from TechNet.. From: Michael B. Smith [mailto:[email protected]] Sent: Sunday, August 22, 2010 9:26 PM To: NT System Admin Issues Subject: RE: External LDAP Access Question I would probably start by binging/googling "enable active directory ldap over ssl". Regards, Michael B. Smith Consultant and Exchange MVP http://TheEssentialExchange.com From: Chyka, Robert [mailto:[email protected]] Sent: Sunday, August 22, 2010 9:06 PM To: NT System Admin Issues Subject: External LDAP Access Question We are having our Online Learning Platform hosted with Blackboard direct for now. I need to give them secure SSL access to our AD LDAP servers to read some of our AD objects. We own a wildcard cert for our domain. Can we use this for this type of setup? I know the cert is based upon host name etc. but do I have to install IIS on our ldap AD server to get this to work properly? Thanks for any help! Bob ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~
