Monitor unlimited number of servers
Filter log events
Create email and web-based reports

Direct access to Microsoft articles
Customized keywords for major search engines
Access to premium content

Event ID: 1220 Source: NTDS LDAP

LDAP over SSL will be unavailable at this time because the server was unable to obtain a certificate.
Some newsgroup posts suggest ME263231.
For more information about this event see T941846 (Event ID 1220 - LDAP over SSL appears in the Event Log).
LDAP over SSL requires a server certificate, if you have not installed CA services this event can be safely ignored, it is just a warning.
Quote from MS: "This event is logged when a server application (for example, Active Directory) attempts to perform a Secure Sockets Layer (SSL) connection, but no server certificate is found. Server certificates are either enrolled for by hand or are automatically generated by the domain's enterprise Certificate Authority (CA). In domains where no enterprise CA exists, this is an expected event and you can safely ignore the message”.
I fixed this by restarting the server.
This event id is usually logged along with event id 36872 (source Schannel) which is addressed in ME261196.

Windows Event Log Analysis Splunk App

Build a great reporting interface using Splunk, one of the leaders in the Security Information and Event Management (SIEM) field, linking the collected Windows events to



Cisco ASA Log Analyzer Splunk App

Obtain enhanced visibility into Cisco ASA firewall logs using the free Firegen for Cisco ASA Splunk App. Take advantage of dashboards built to optimize the threat analysis process.