I'm trying to get a Windows Server 2008 R2 domain controller to use SSL with LDAP. I have a certificate installed, but I'm unable to connect on port 636 via ldp.exe (port 389 works just fine). I verified that the port is open on the firewall, and now I'm working through the certificate requirements on this MS Knowledge Base article.
I checked most of the requirements already, but I'm stuck on verifying this:
The private key must not have strong private key protection enabled.
How can I verify this for a previously installed certificate? The certificate was issued by DigiCert.
Best Answer
I don't have a test system at the moment but a Google search produced this article.
Windows PKI Blog - What is a strong key protection in Windows?
Near the bottom it states: