directory-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Jim Willeke <>
Subject Re: Error while opening connection to Windows 2008 R2 AD
Date Thu, 22 Nov 2012 08:58:49 GMT
The LDAP server requires at least SSL or TLS to establish the connection.

Usually this issue is the result of a domain policy set in active directory
that enforces all LDAP authentication to be secured with SSL.
The policy on the domain controller is: "Domain controller: LDAP server
signing requirements" and if set to "Require signing" the LDAP data-signing
option must be negotiated unless Transport Layer Security/Secure Socket
Layer (TLS/SSL) is being used.

If this policy is configured on one's domain controllers in a Windows
Domain, non-secure LDAP authentication will fail.

Jim Willeke

On Thu, Nov 22, 2012 at 1:48 AM, 杨华杰 <> wrote:

> DSID-0C0901FC

  • Unnamed multipart/alternative (inline, None, 0 bytes)
View raw message