Thanks Steve.
joe
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Steve Linehan
Sent: Thursday, August 24, 2006 12:10 AM
To: ActiveDir@mail.activedir.org
Subject: RE: [ActiveDir] Secure LDAP queries from the outside --> problem
solved
Not sure on
23, 2006 9:27 PM
To: ActiveDir@mail.activedir.org
Subject: RE: [ActiveDir] Secure LDAP queries from the outside -->
problem solved
Windows 2000 RTM, by default, does not perform CRL checking; XP and 2003
do.
However, there are behavior variances on an application-by-application
basis. For
joe
Sent: Wednesday, August 23, 2006 10:38 PM
To: ActiveDir@mail.activedir.org
Subject: RE: [ActiveDir] Secure LDAP queries from the outside -->
problem solved
Oh this could catch some folks by surprise...
Out of curiosity, is it implemented with a "turn on this reg key to
enable this&quo
alf Of Steve Linehan
Sent: Wednesday, August 23, 2006 10:37 PM
To: ActiveDir@mail.activedir.org
Subject: RE: [ActiveDir] Secure LDAP queries from the outside --> problem
solved
Furthermore the current implementation of wldap32 in Windows Server 2003
SP1 does not request that the certificate be v
3AE
Laura
> -Original Message-
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED] On Behalf Of Joe Kaplan
> Sent: Wednesday, August 23, 2006 10:06 PM
> To: ActiveDir@mail.activedir.org
> Subject: Re: [ActiveDir] Secure LDAP queries from the outside
> --> prob
age-
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED] On Behalf Of Joe Kaplan
> Sent: Wednesday, August 23, 2006 10:06 PM
> To: ActiveDir@mail.activedir.org
> Subject: Re: [ActiveDir] Secure LDAP queries from the outside
> --> problem solved
>
> It actually dep
ECTED]>
To:
Sent: Wednesday, August 23, 2006 8:37 PM
Subject: RE: [ActiveDir] Secure LDAP queries from the outside --> problem
solved
Hi joe,
The CRL location is *not* available from the outside. And since neither
adfind, ldp or Outlook Express seemed to care, I am guessing that not many
veDir@mail.activedir.org
Subject: RE: [ActiveDir] Secure LDAP queries from the outside --> problem solved
Cool, is the CRL available from the outside at all? I am really curious if that
is truly needed from the client when using LDAPS, it doesn't seem to be needed
but my testing has been far
ion - http://www.joeware.net/win/ad3e.htm
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Thommes, Michael
M.Sent: Wednesday, August 23, 2006 8:06 AMTo:
ActiveDir@mail.activedir.orgSubject: RE: [ActiveDir] Secure LDAP
queries from the outside --> problem solved
Thanks to all who
re
:[EMAIL PROTECTED] On Behalf Of Thommes,
Michael M.
Sent: Tuesday, August 22, 2006
9:36 AM
To: ActiveDir@mail.activedir.org
Subject: RE: [ActiveDir] Secure
LDAP queries from the outside
Hi Robert,
Yes, the command is *exactly* the same. We are thinking
that our CRL location is not
de of his network.
my .02
steve
- Original Message -
From:
Bernier,
Brandon (.)
To: ActiveDir@mail.activedir.org
Sent: Tuesday, August 22, 2006 9:14
AM
Subject: RE: [ActiveDir] Secure LDAP
queries from the ou
twork.
my .02
steve
- Original Message -
From:
Bernier, Brandon
(.)
To: ActiveDir@mail.activedir.org
Sent: Tuesday, August 22, 2006 9:14
AM
Subject: RE: [ActiveDir] Secure LDAP
queries from the outside
Are you publishing a CRL? If so then it must us
ndon
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Thommes, Michael
M.Sent: Tuesday, August 22, 2006 10:36 AMTo:
ActiveDir@mail.activedir.orgSubject: RE: [ActiveDir] Secure LDAP
queries from the outside
Hi
Robert,
Yes,
the command is *exactly* the
same. We are thinking t
I hate troubleshooting SSL but here it
goes...
First, have you installed the Cert Chain on the machine you
are querying AD from?
Second, is the DNS name of the DC you querying exactly what
is in the DCs cert?
I don't think you need anything open other than 636. The
way the MSFT LDAP AP
] [mailto:[EMAIL PROTECTED] On Behalf Of Williams,
Robert
Sent: Tuesday, August 22, 2006
9:16 AM
To: ActiveDir@mail.activedir.org
Subject: RE: [ActiveDir] Secure
LDAP queries from the outside
Hey Mike,
When you say “It works fine behind
our firewall”, are you meaning that the *exact same
] On Behalf Of Williams, Robert
Sent: Tuesday, August 22, 2006
9:16 AM
To: ActiveDir@mail.activedir.org
Subject: RE: [ActiveDir] Secure
LDAP queries from the outside
Hey Mike,
When you say “It works fine behind
our firewall”, are you meaning that the *exact same* command line works and you
Thommes, Michael M. wrote:
Hi,
We are trying to set up secure LDAP queries from the outside to AD
for pulling email addresses but are running into an issue. Port 636 has
been opened up to our DCs but we get a 0x51 error like the one shown
below in this example of using “adfind”:
liste
Hey Mike,
When you say “It works fine behind
our firewall”, are you meaning that the *exact same* command line works and you get the object
returned?
I tried using adfind to connect to my test
DC using port 636 and got the exact same error…but I don’t have a
cert installed on my DC
Check the firewall rules to ensure they are correct. Are the packets
even getting to the DC? Personally I doubt it.
M@
On 8/22/06, Thommes, Michael M. <[EMAIL PROTECTED]> wrote:
Hi,
We are trying to set up secure LDAP queries from the outside to AD for
pulling email addresses but are run
19 matches
Mail list logo
