Windows Domain Controller Certificate template for LDAPS, Strong KDC, etc.

To perform LDAPS with Domain Controllers, you must install a certificate into the personal store of the computer account. If you are using Windows Enterprise CAs, it is no problem, as a dedicated template used to exist for a while. For 3rd-party CAs, until Windows 2003, the requirements the certificate […]

How to have a member server stick to one specific domain controller?

In case of troubleshooting or temporary issue, you may want to be sure that a given member server always authenticate against one specific domain controller. For this, you may want to combine two tools: The “time-to-live” (TTL) value for the validity of the discovered domain controller The ability to specifically […]