Hello all,
We are going to start using a hosted solution that calls for an LDAP connection to our active directory over the internet. In order to make the connection to AD secure, I have put an RODC in the perimeter and I am trying to enable LDAPS.
We have a wildcard cert from godaddy that has been imported into the personal store and contains the private key. There is also another certificate from our DC that automatically gets generated in the private store.
I can connect using SSL to the internal fqdn, rodc.domain.local, but I cannot connect using "public" DNS name of ldap.domain.com (this is all internal communication and separate internal DNS). The wildcard cert is published for *.domain.com.
I know the certificate is good because its used with IIS on this machine (and other machines). I have enabled SChannel logging, but nothing shows up in the error log. I am using LDP to make a connection.
Here are the guides I've followed:
http://blogs.technet.com/b/askds/archive/2008/03/13/troubleshooting-ldap-over-ssl.aspx
http://support.microsoft.com/kb/321051?wa=wsignin1.0
I have no idea where to go from here...
Any help is appreciated.
Trent
