LDAPS configuration works fine intermittently

Emanuele Signorin 46 Reputation points
2024-06-14T16:13:57.5+00:00

Hi,

we are facing a strange problem with LDAPS configuration.

Servers involved:

  • A server: Application Server
  • B server: Domain Controller

On A server there is an application developed in PHP. The application is connecting to AD on B server with LDAP protocol and is working fine.

When we change the configuration in LDAPS, it works well intermittently: sometimes it works fine, sometimes it gives an issue.

We performed a Wireshark capture during LDAPS connections and we saw an error "Unknown CA" given by the A server when it receives the certificate from Domain Controller. We checked that the certificate used by the DC is the same both when it works and when it doesn't work.

We haven't noticed any network or infrastructure problems, and the DC serves about 500,000 LDAPS connections per day (all other LDAPS configurations work fine), so I think we can rule out a problem on the DC.

Does anyone have an idea what the problem might be?

Thank you in advance.

Best regards,

Emanuele

Windows Server
Windows Server
A family of Microsoft server operating systems that support enterprise-level management, data storage, applications, and communications.
12,600 questions
Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
6,215 questions
{count} votes