Check AD SSL Certificate?

ohaya · Jul 23, 2009

Hi,

We have an AD that we configured several years ago to allow LDAPS (SSL)
connections. I've been looking into a problem where someone is
reporting not being able to connect/bind to it on port 636, and I
suspect that the server cert may have expired.

Is there any way (tools, etc.) to check/display the certs (both the CA
and the server cert) that the AD is using for SSL?

Thanks,
Jim

Marcin · Jul 25, 2009

Search for the certificate that matches criteria outlined in the
http://support.microsoft.com/kb/321051
This can be done using Certificates snap-in (personal computer certificate
store on the DC) or certutili utility...

hth
Marcin

ohaya · Jul 25, 2009

Marcin,

Thanks for the pointers. We'll give either the certificates snap-in or
certutil a try.

Jim

Check AD SSL Certificate?

ohaya

Marcin

ohaya