DEV Community

loading...

Discussion on: Active Directory LDAPS the easy way

Collapse
ema07cqc profile image
Emanuel

Hi there. Hope you are doing well and safe.
I followed your tutorial 20 days ago and everything is working well (Windows Workstations i.e).
The connection from a linux to the main server is OK, using:
openssl s_client -connect srv-ad-01.mydomain.local:636 -CAfile ca.crt

but its not working when trying to connect the other 3 DCs (where I imported pfx). Im getting this error:

CONNECTED(00000003)
write:errno=104
no peer certificate available
No client certificate CA names sent
SSL handshake has read 0 bytes and written 0 bytes
New, (NONE), Cipher is (NONE)

I followed this guide to import the PFX file:
How to Install Certificates on Microsoft Active Directory LDAP 2012

There is another way to import that pfx file?

Thanks again.

Thread Thread
bondr007 profile image
bondr007 Author

Hi Emanuel,

Sorry it took so long to reply.

You can export the cert/privatekey and import them on the rest of your domain controllers using the commands listed here to do this:
github.com/bondr007/HowTo-ActiveDi...