+ Post New Thread
Results 1 to 5 of 5
Windows Server 2000/2003 Thread, Active Directory over SSL in Technical; ok, so I'm stuck with an infinite amount of questions, a couple of 'answers' and standing in the centre of ...
  1. #1
    DrPerceptron's Avatar
    Join Date
    Dec 2008
    Location
    In a house
    Posts
    932
    Thank Post
    37
    Thanked 135 Times in 115 Posts
    Rep Power
    41

    Active Directory over SSL

    ok, so I'm stuck with an infinite amount of questions, a couple of 'answers' and standing in the centre of a round room... behind one of the questions is the door to escape the hellish nightmare...

    1. LDAP over SSL is it restricted to 636? I'm asked to set it up to go over 443... but the internet just laughed at me

    2. Has anyone actually asked SWGfL (or another RBC) about running LDAP with their hosting services? I did... they said it works see above

    3. Am I going to need an externally signed SSL certificate? or will an internally signed cert suffice?

    I think that should do for now... hopefully.

  2. #2

    FN-GM's Avatar
    Join Date
    Jun 2007
    Location
    UK
    Posts
    16,215
    Thank Post
    893
    Thanked 1,773 Times in 1,529 Posts
    Blog Entries
    12
    Rep Power
    461
    Do you really want to expose your internal network like that?
    Do you not want some kind of VPN or something?

  3. #3
    DrPerceptron's Avatar
    Join Date
    Dec 2008
    Location
    In a house
    Posts
    932
    Thank Post
    37
    Thanked 135 Times in 115 Posts
    Rep Power
    41
    When it goes live, it'll probably point at a 2008 R-ODC.

    I can't find any major security risks that are actually current, the DC's take any critical AD based updates from WSUS and reboot during the night after, anonymous bind/search is disabled and a couple of other things... so various factors have been weighted.

    The big reason it wants to be enabled is there's a guaranteed uptime hosting it externally which is more important.

    Supposedly I'm not required to open any ports at all... it'll just work (according to SWGfL networky people) there's probably some high-tech trickery I can employ with current hardware that'd work.

  4. #4
    Midget's Avatar
    Join Date
    Oct 2006
    Location
    In a Server Room cutting through a forest of Cat5e
    Posts
    1,298
    Thank Post
    5
    Thanked 59 Times in 49 Posts
    Rep Power
    40
    so it's being hosted with the council and you connect to it over a leased line?

  5. #5
    DrPerceptron's Avatar
    Join Date
    Dec 2008
    Location
    In a house
    Posts
    932
    Thank Post
    37
    Thanked 135 Times in 115 Posts
    Rep Power
    41
    correct.

SHARE:
+ Post New Thread

Similar Threads

  1. active directory
    By bart21 in forum Windows Server 2000/2003
    Replies: 1
    Last Post: 4th January 2010, 08:24 PM
  2. Replies: 0
    Last Post: 6th April 2009, 10:26 PM
  3. active directory
    By MrPstv in forum Windows Server 2000/2003
    Replies: 5
    Last Post: 26th March 2009, 07:26 PM
  4. Active Directory
    By Neville in forum Windows
    Replies: 6
    Last Post: 25th June 2008, 03:24 PM
  5. Replies: 7
    Last Post: 31st January 2008, 12:17 PM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •