To communicate with the Active Directory server over the Secure Sockets Layer (SSL), you need an SSL enabled server and an SSL certificate for the client. SSL communication is required to programmatically change the Active Directory password. This page will show you how to export an SSL certificate from an SSL enabled Windows Server 2003 to use the LDAP API over SSL. If you have not yet configured SSL, see Enable LDAP SSL with Active Directory.
1. Click Start, select Administrative Tools and click Certification Authority. This will launch the Certification Authority application.
2. Select a certification authority, press right click and click Properties.
3. In the Properties window, click the View Certificate button.
4. In the Certificate window, click the Details tab and click the Copy to File button.
5. Click Next in the Certificate Export Wizard window.
6. Select Base-64 encoded X.509 and click Next.
7. Specify the path and file name of the certificate and click Next.
8. Finally, click Finish to export the certificate.***
Posted on 5/19/2008 and last updated on 8/5/2008
Filed under Active Directory , SSL
Share This