Re: SSL ADAM and XP

If you already have an SSL cert for fabrikam.com, you can use that for ADAM
(as long as you use the fabrikam.com DNS name to connect, not localhost).

For ADAM, you want to install the cert and private key into store for the
service account running ADAM. If you do some Google searches, you'll find
more details.

Joe K.

--
Joe Kaplan-MS MVP Directory Services Programming
Co-author of "The .NET Developer's Guide to Directory Services Programming"
http://www.directoryprogramming.net
--
"Noremac" <Noremac@xxxxxxxxxxxxxxxxx> wrote in message
news:F3BA4B55-8725-4222-9CA1-1A651539C012@xxxxxxxxxxxxxxxx
I am going around in circles. Sorry for posting a question that may already
be answered.

I want to use the ADAM Membership Provider on my development Windows XP
machine using VS2005.

I have ADAM working on my local computer. I got it working through the
ASP.NET 2.0 RBAC article.

I setup web.config based on stuff I googled. But when I call this line:
MembershipUserCollection users = Membership.GetAllUsers(), I get the
"Unable
to establish secure connection with the server using SSL".

I can only find references to getting SSL with W2K machines or disabling
SSL
on XP machines. I want to have SSL work on XP.

I do have a fabrikam certificate from other samples I have on this
machine.

These are the ldap connection strings I have tried that do not work:
LDAP://localhost:389/CN=AzManAdamStore,OU=SecNetPartition,O=SecNet,C=US
LDAP://localhost:636/CN=AzManAdamStore,OU=SecNetPartition,O=SecNet,C=US
LDAP://fabrikam.com:389/CN=AzManAdamStore,OU=SecNetPartition,O=SecNet,C=US
LDAP://fabrikam.com:636/CN=AzManAdamStore,OU=SecNetPartition,O=SecNet,C=US

Thanks!
Noremac








.

Relevant Pages

  • Re: ADAM SP1 on Win2K3 SP1
    ... key for the ADAM service account. ... The SSL server credential's certificate does not have a private key ... My general cryptography knowledge tells me only the account used to ...
    (microsoft.public.windows.server.active_directory)
  • Re: ADAM SP1 on Win2K3 SP1
    ... LDAP over Secure Sockets Layer (SSL) will be unavailable at this time because the server was unable to obtain a certificate. ... did you restart the ADAM sevice after you added the read permission ... Assuming SSL on ADAM is working fine and i want to use antoher domain user account as the ADAM service account. ... Or I have to go through the entire process starting from requesting certificate all over again to use the new domain user account as the ADAM service account? ...
    (microsoft.public.windows.server.active_directory)
  • Re: ADAM wirh SSL
    ... I've recently configured SSL on a few other ADAM servers with absolutely no ... Co-author of "The .NET Developer's Guide to Directory Services Programming" ... I just setup an ADAM on a standalone server. ...
    (microsoft.public.windows.server.active_directory)
  • Re: ADAM SSL
    ... As you suggested, the certificate we were ... using did *not* have a valid private key. ... Where "CertSerialNumber" is the serial number of the imported ADAM SSL ... Certificates MMC snap-in) from the Local Computer personal store to the ADAM ...
    (microsoft.public.windows.server.active_directory)
  • Re: makecert
    ... Thanks for the response, Joe. ... Do you want to replace the SSL settings for site 1?y ... generating one off SSL certs and I've used that for ADAM before too. ... cert will get installed on the local machine and configured in IIS, ...
    (microsoft.public.windows.server.active_directory)