Ldap
Ldap
Ldap
Uma Mahesh.G
Senior QA Engineer
gunipati81@gmail.com
Certificate Services is included with Windows Server 2003 but not installed by default. The
service is used to issue and manage certificates for a Public Key Infrastructure (PKI).
Certificate Services allows a computer running Windows Server 2003 to receive requests for
certificates from users and computers, verify the identity of a requestor, issue and revoke
certificates, and publish a Certificate Revocation List (CRL).
In order to install the CA you will first need to install IIS on a Windows Server 2003
computer.
1. Log on as a member of both the Enterprise Admins group and the root domain's
Domain Admins group.(Administrator)
2. Go to Settings > Control Panel > Select Add/Remove Programs > Click Add/Remove
Windows Components.
3. In the Windows Components Wizard, select the Certificate Services check box. A
dialog box appears to inform you that the computer cannot be renamed and that the
computer cannot be joined to or removed from a domain after Certificate Services is
installed. Click yes, and then click next
4. Click Enterprise root CA and then click next
5. Give the common name (LDAPCertificate) for the CA, and then click next
6. In the Certificate Database Settings page, click next
If you have IIS Server then the Pop up will be displayed to stop IIS Service. Click “Yes”
Enable ASP Pages, by click “Yes”
Install Microsoft tools and Go to Start > Run > cmd > ldp.exe > Open
We can establish SSL connection between LDAP client and AD Server with the help of importing
trusted root CA certificate into the client’s environment.
AD Server Side:
Client:
1. Copy LDAP.p7b file from AD Server and paste it in the Client machine
2. Double click to open P7b certificate and select LDAPCertificate
3. do right click and select install option to install Third party certificate authority
4. Follow the instruction to complete the process.
Install Microsoft tools and Go to Start > Run > cmd > ldp.exe > Open