none
MIM 2016 ADMA LDAP SSL cross forest config throws errors RRS feed

  • Question

  • We're an MSP who manages 75+ customer forests & networks.  In the LAB I am trying to switch my working ADMAs to use LDAP to ensure SSL encrypted traffic between forests.

    In production I built a new Two Tier CA infrastructure and have imported the CA root certificate chains into the Trusted Certificate Authorities containers.  I created a certificate for each of my target forest DC and have verified that LDAP over port 636 is working using the LDP.exe utility from my Lab MIM server

    When I go into the working ADMA and change the settings from "Sign & Encrypt LDAP Traffic" to "Enable SSL for the Connection" I get the following error:

    "An error was encountered trying to retrieve the SSL cipher strength"

    I am using 256 bit encryption verified by LDP.exe

    Any ideas ?

    Thanks, Stu


    Friday, December 4, 2015 5:02 PM

Answers

  • Solved the issue by playing around.  Changed the Forest Name on the ADMA to the Server FQDN and it is now successfully using SSL  & port 636!

    Monday, December 7, 2015 5:17 PM