CRLDP LDAP no Hostname

Question

Our internal CA is AD based, with CDP configured with http URI and ldap URI.  When trying to use CRLDP it errors out because the ldap URI entry in the certificate has no hostname (under Windows if there is no hostname it assumes AD).&nbsp;
&nbsp;Rather than rejigging the PKI infrastructure is there some way to intercept this with iRules and insert a hostname?  OCSP is another possibility but would require deployment of some more servers.&nbsp;

ccb · Answer

Hi Mark, 
&nbsp;  
&nbsp; Did you manage to find a solution? &nbsp;

mark_van_d · Answer

Hi Clinton, 
&nbsp;  
&nbsp; Not as yet, once I find one I'll let you know.

kc_106957 · Answer

Hi Mark, 
&nbsp;  
&nbsp; I think you can add an extra ldap URI with hostname without rejigging your KPI infrastructure. ldap://hostname/... 
&nbsp;  
&nbsp; My windows admin changed it for me, the only problem I have is that during the client SSL authentication phase the LTM/APM tell's me that the client certificate is self signed by my internal Root CA. 
&nbsp;  
&nbsp; How did you overcome this in your setup? 
&nbsp;  
&nbsp; Thanx, 
&nbsp;  
&nbsp; Kees

mark_van_d · Answer

Hi Kees, 
&nbsp;  
&nbsp; I haven't made any progress on this. 
&nbsp;  
&nbsp; Cheers 
&nbsp; Mark

Forum Discussion

CRLDP LDAP no Hostname

Recent Discussions

Outlook application issue

Why does WAF block HTTP OPTION method

Rewriting Location Header in iRule

HA Configuration (One in primary and One in DR)

Sending a trusted certificate to server

Related Content

LDAPS vip - how to?

LDAP Proxy

LDAP Auth, LDAP Query with UPN fails

APM CRLDP

Rewrite HTTP Redirect Hostname