{"id":193,"date":"2016-09-13T21:32:34","date_gmt":"2016-09-13T17:02:34","guid":{"rendered":"http:\/\/www.enhisecure.com\/isecureblog\/?p=193"},"modified":"2016-11-29T12:55:15","modified_gmt":"2016-11-29T08:25:15","slug":"enabling-active-directory-ssl-authentication","status":"publish","type":"post","link":"https:\/\/www.enhisecure.com\/isecureblog\/2016\/09\/13\/enabling-active-directory-ssl-authentication\/","title":{"rendered":"Enabling Active directory SSL authentication"},"content":{"rendered":"

Using JNDI\u00a0<\/a>we can\u00a0access the active directory<\/a>,\u00a0but if we want to access the active directory<\/a> using the secure port we need to get the certificate issued by the active directory certification services<\/a>.<\/p>\n

The certificate helps to authenticate the server over\u00a0SSL<\/a>.<\/p>\n

SSL\u00a0<\/a>authentication is useful when we need to\u00a0perform\u00a0the administrative stuff like changing password using JNDI<\/a>.<\/p>\n

Active directory <\/a>enables us to access the server over SSL\u00a0<\/a>using the certificate issued by that server.<\/p>\n

To access the active directory<\/a> using the JNDI\u00a0<\/a>we need to get the certificate issued by the active directory<\/a> and import that into java key tool.<\/p>\n

 <\/p>\n

<\/a>1.\u00a0\u00a0\u00a0\u00a0 Creating and\u00a0exporting certificate\u00a0file<\/strong><\/h4>\n

We can export the certificate which can accept the SSL\u00a0<\/a>authentication in many ways. But in this article we are exporting the certificate using the internet explorer and command prompt.<\/p>\n

Note: to export the certificate, server should be installed with\u00a0active directory certification services<\/a>. Refer the following\u00a0link\u00a0<\/a>to install the\u00a0ADCS<\/a><\/p><\/blockquote>\n

<\/a>\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 i.\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Exporting the certificate using the internet explorer<\/strong><\/h5>\n