How to install certificate for LDAP on a Windows Server

 Problem Description : 

LDAP SSL

 Resolution : 

Resolution

To install a certificate for LDAP on a Windows Server follow these steps:

1. After you receive the confirmation email from GeoTrust, download the certificate by choosing 'other' as the 'Server Platform' and then choose X509 for the version. Unzip the download and then copy the file ssl_certificate.cer to the LDAP server. Rename the file to cert20XX.cer (XX - year).

2. Open a command prompt and run: certreq -accept cert20XX.cer 

Your certificate is now installed. 

NOTE: REBOOT THE SERVER BEFORE THE PREVIOUS CERTIFICATE EXPIRES. REBOOTING WILL RESET THE SECURITY CACHE

UPDATE: MAY NEED TO REBOOT THE SERVER AFTER THE OLD CERTIFICATE HAS EXPIRED TO RELEASE THE SSL CACHE. 

To verify if your certificate was installed, please follow these steps: 

1. Go to Start. 

2. Run. 

3. Type in MMC and click OK. 

4. Go to File. 

5. Select Add/Remove Snap-In. 

6. Select Certificates from the list. 

7. Choose Computer Account and Local Computer. 

8. Close back to the main MMC window. 

9. Go to File and Save. 

10. Expand Certificates. (Local Computer) 

11. Expand Personal. 

12. Expand Certificates. 

Your new certificate should exist within the Certificates folder. 

Any configuration questions for LDAP, please refer to Microsoft website at: <http://support.microsoft.com/kb/321051/en-u>    

 Revision Date : 6/26/2017