Root CA not allowing LDAPs anymore. "Domain controller template using: client authentication, Server Authentication template."
Our Certificate Authority server has suddenly stopped allowing ldaps to bind against our active directory domains.
All certs were valid for data and subject and had been working for several months. Root CA allows other domain controllers to enrol against it and using ldp.exe we can connect using port 389 and 636 + ssl. However, if we try to bind, this then fails. Events show Schannel errors, however we have checked the issued certs and they have private keys assigned.
In an attempt to resolve this we removed all Root Certifiactes, un-enrolled domain controllers and revoked certificates. Re-creating the root certificate and re-enrolling the domain controllers to the domain controller template has not resolved the issue.
Can anyone advise where we might be going wrong?
Many thanks