Using AD Over SSL | passcorepro

By lorenzoinfante - 9/10/2020

To configure passcorepro with active directory over SSL follow the next steps:

Install Certification Authority in your Domain Controller server you can use Microsoft’s documentation for this step https://docs.microsoft.com/en-us/windows-server/networking/core-network-guide/cncg/server-certs/install-the-certification-authority

**if you already have it installed, please omit this part.

Add the server where passcorepro is installed to the domain where it is going to connect.

Update the port on passcorepro’s Admin from 389 to 636, test the connection.

At this point your connection should be working

Troubleshooting common issues:

If you are receiving the error “The server could not be contact” open Microsoft’s Event Viewer → Windows Logs → System, refresh the page and look for an error like “The certificate received from the remote server was issued by an untrusted certificate authority. Because of this, none of the data contained in the certificate can be validated. The TLS connection request has failed. The attached data contains the server certificate.”

If you see it, it means the Active Directory self-signed certificate generated in the Domain Controller must be installed in the server where passcorepro is installed to generate a trusted connection.

Follow the next link to our blog entry

If after doing this, you are still seeing the error “The server could not be contact” check again Microsoft’s Event Viewer → Windows Logs → System; refresh the logs and look for an error like “The certificate received from the remote server does not contain the expected name. It is therefore not possible to determine whether we are connecting to the correct server. The server name we were expecting is 192.168.100.64:636. The TLS connection request has failed. The attached data contains the server certificate.”

The error means the hostname set in passcorepro’s Admin is not the same full computer name of the Active Directory server, please verify both names are the same and test again the connection in passcorepro. Using AD Over SSL passcorepro Using AD Over SSL passcorepro

Comments