Whilst I haven't actually done this, I don't imagine it will be a problem. SSL/TLS connections are handled by LSASS (user mode processing) or ksecdd.sys (kernel mode processing) - AD itself wouldn't re-implement the wheel just to have it's own SSL/TLS connection capability.
Cheers Ken From: Senter, John [mailto:john.sen...@etrade.com] Sent: Wednesday, 31 December 2008 12:08 AM To: NT System Admin Issues Subject: LDAP over SSL using wildcard cert Has anyone used a wildcard cert to configure secure LDAP connects in a Windows 2003-R2 domain? Our security team is now asking to put certs on all the DC;s to allow SSL LDAP connections. The easiest thing to do would be to use our internal wildcard certificate, just not sure if Windows 2003 AD will accept it. Thanks and have a Happy New Year ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~