Any tool that can generate a CSR (OpenSSL, Windows, etc.) can be used.
There isn't that much that is special in the CSR itself. You would just
want to ensure that the CN is the full DNS host name of the ADAM server.
For test cert, it depends on what you want to trust the certificate and how
much control you have over those clients. You could certainly create a
self-signed SSL server cert on Windows with OpenSSL or makecert.exe or
selfssl.exe (designed for IIS but still usable here). However, no clients
will trust that cert by default. You could set up your own CA or you could
buy a commercial cert that would be presumably trusted by any client.
One other thing worth knowing is that there is no real interesting
difference between and SSL cert for ADAM and an SSL cert for any web server.
The important thing with ADAM is ensuring that the host name in the cert
matches the DNS name you use to access ADAM and that the key is installed in
a container that is available to the service account you use and the service
account has the required private key permissions to access it.
--
Joe Kaplan-MS MVP Directory Services Programming
Co-author of "The .NET Developer's Guide to Directory Services Programming"
http://www.directoryprogramming.net
"carl" <> wrote in message
news:eigi$...
I am trying to test enabling SSL to connect to ADAM using LDAPS.
1.How should i generate the CSR for a server type certificate
2.Where can i get a test SSL certificate (Server Type)
Similar Threads
Linear Mode
