This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(32, 17%, 13%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECC%3C/text%3E%3C/svg%3E)
We have enabled LDAPS on the DCs and that means that each of them has it own personal certificate.
Some application owners (java untill now) request from us that pesonal certificate of the domain controller in order to embended it to their application.
I would like to ask if to give the personal certificate of a domain controller to a member server is a valid practice and if that could be mean a security issue.
Thank you
Hi,
Q&A currently supports the products listed in right-hand pane (more to be added later on)
You can reach the experts in the dedicated Directory Services forum over here:
https://social.technet.microsoft.com/Forums/en-US/home?forum=winserverDS
(please don't forget to mark helpful replies as answer)
Best regards,
Leon