Build a great reporting interface using Splunk, one of the leaders in the Security Information and Event Management (SIEM) field, linking the collected Windows events to www.eventid.net. The EventId.Net for Splunk Add-on assumes that Splunk is collecting information from Windows servers and workstation via the Splunk Universal Forwarder.
|Source: NTDS LDAP|
LDAP over SSL will be unavailable at this time because the server was unable to obtain a certificate.
|English: Request a translation of the event description in plain English.|
|Concepts to understand:|
What is NTDS and what are the roles of its components?
What is LDAP?
Some newsgroup posts suggest ME263231.
For more information about this event see T941846 (Event ID 1220 - LDAP over SSL appears in the Event Log).
Alessandro Del Prete
LDAP over SSL requires a server certificate, if you have not installed CA services this event can be safely ignored, it is just a warning.
Quote from MS: "This event is logged when a server application (for example, Active Directory) attempts to perform a Secure Sockets Layer (SSL) connection, but no server certificate is found. Server certificates are either enrolled for by hand or are automatically generated by the domain's enterprise Certificate Authority (CA). In domains where no enterprise CA exists, this is an expected event and you can safely ignore the message”.
Christophe Lubrano di Ciccone
I fixed this by restarting the server.
This event id is usually logged along with event id 36872 (source Schannel) which is addressed in ME261196.
|Private comment: Subscribers only. See example of private comment|
|Links: EventID 1220 from source Active Directory|
|Search: Google - Bing - Microsoft - Yahoo - EventID.Net Queue (0) - More links...|
Send comments or solutions
- Notify me when updated