Hello all,
This might be a mix between this subreddit and /r/sysadmin, but I am running into some confusing problems with authenticating an ubuntu server to our Windows AD with LDAPS. I've been continuing my research on how to use ldapsearch, which I'm still trying to understand, but I am having difficulty in properly setting up the necessary SSL certificates within Ubuntu to connect. Here's what I have observed:
-I am able to authenticate on the AD server using the LDP tool and with port 636 (the only way I'd get it to work is to use the 'Bind With Credentials' option)
-I'm assuming there is a certificate on the AD server in order for it to bind the credentials, but I don't know which one. I also don't know how I would add that to the Ubuntu server so that it can make an SSL connection to the AD server using LDAPS.
-I've done a lot of different variations with the syntax of the ldapsearch tool, but trying to bind with an AD account over port 636 produces an error, "Cannot contact LDAP server".
-All of this testing is to see if I can get LDAP synchronization to work properly with Alfresco. I would prefer to use LDAPS though. A lot of this is currently over my head, and I appreciate any feedback. Cheers!
[link][10 comments]