Dustin Puryear wrote:
If you connect to port 636/tcp on a DC via ldp.exe then SSL is enabled.
OK that's good news. So since I can connect with ldp.exe, what should I be doing to connect via ldapsearch? This is what I've tried:
$ ldapsearch -W -LLL -E pr=200/noprompt -h adserver -p 636 -D "[email protected]" -b "dc=domain, dc=com" -s sub "(cn=*)" cn mail sn
Should it work? There was one thing I was not sure of, do I need to install a certificate on the client? That was never very clear to me in what I've read so far.
Cheers, Simon
