directory-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Jim Willeke <...@willeke.com>
Subject Re: Error while opening connection to Windows 2008 R2 AD
Date Thu, 22 Nov 2012 08:58:49 GMT
The LDAP server requires at least SSL or TLS to establish the connection.

Usually this issue is the result of a domain policy set in active directory
that enforces all LDAP authentication to be secured with SSL.
The policy on the domain controller is: "Domain controller: LDAP server
signing requirements" and if set to "Require signing" the LDAP data-signing
option must be negotiated unless Transport Layer Security/Secure Socket
Layer (TLS/SSL) is being used.

If this policy is configured on one's domain controllers in a Windows
Domain, non-secure LDAP authentication will fail.

--
-jim
Jim Willeke


On Thu, Nov 22, 2012 at 1:48 AM, 杨华杰 <yhjhoo@gmail.com> wrote:

> DSID-0C0901FC

Mime
  • Unnamed multipart/alternative (inline, None, 0 bytes)
View raw message