Thread:Extension talk:LDAP Authentication/Failed to bind as/reply (5)

It is signed itself. Here is the output: Certificate: Data: Version: 3 (0x2) Serial Number: 61:03:f5:7d:00:02:00:00:00:3f Signature Algorithm: sha1WithRSAEncryption Issuer: DC=local, DC=domain, CN=Private Exchange Zertifizierungsstelle Validity Not Before: Feb 22 14:37:35 2011 GMT Not After : Feb 22 14:37:35 2012 GMT Subject: CN=server2.domain.local Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public Key: (1024 bit) Modulus (1024 bit): 00:c6:50:[...(i've cut something)...]:60:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Key Usage: Digital Signature, Key Encipherment S/MIME Capabilities: 050...*.H.. ......0...*.H.. ......0...+....0 ..*.H.. ..           X509v3 Subject Key Identifier: BE:B0:1E:3C:BC:EE:7D:28:B6:78:F5:D1:A6:02:F3:9C:31:F9:4A:68 1.3.6.1.4.1.311.20.2:                . .D.o.m.a.i.n.C.o.n.t.r.o.l.l.e.r            X509v3 Authority Key Identifier: keyid:AE:60:A2:A5:5A:23:D8:59:9F:5C:B6:F6:CA:B1:0B:32:5B:1C:2D:C8

X509v3 CRL Distribution Points: URI:ldap:///CN=Private%20Exchange%20Zertifizierungsstelle(1),CN=server2,CN=CDP,CN=Public%20Key%20Services,CN=Services,CN=Configuration,DC=domain,DC=local?certificateRevocationList?base?objectClass=cRLDistributionPoint URI:http://server2.domain.local/CertEnroll/Private%20Exchange%20Zertifizierungsstelle(1).crl

Authority Information Access: CA Issuers - URI:ldap:///CN=Private%20Exchange%20Zertifizierungsstelle,CN=AIA,CN=Public%20Key%20Services,CN=Services,CN=Configuration,DC=domain,DC=local?cACertificate?base?objectClass=certificationAuthority CA Issuers - URI:http://server2.domain.local/CertEnroll/server2.domain.local_Private%20Exchange%20Zertifizierungsstelle(2).crt

X509v3 Extended Key Usage: TLS Web Client Authentication, TLS Web Server Authentication X509v3 Subject Alternative Name: othername:, DNS:server2.domain.local Signature Algorithm: sha1WithRSAEncryption ad:e6:46:26:98:10:1d:85:83:aa:1f:9e:77:10:9a:c3:37:be: 00:ac:b7:9e:92:81:8c:c5:50:bf:6c:dd:25:d9:84:72:01:58: 0c:93:b1:68:63:66:3d:7a:92:1d:a0:c1:3a:4e:fa:b3:0b:1c: 17:92:0c:87:53:9b:6e:ea:0a:6b:66:51:6a:58:22:9a:3f:30: a3:41:6a:3d:88:c8:86:bc:70:35:d1:78:da:48:d0:05:9b:37: cc:85:d5:f0:d5:6d:d3:c3:99:a5:dd:46:47:b8:bf:ad:18:ef: 56:2d:c0:b9:81:61:04:12:58:7f:77:49:4a:bc:b9:97:96:95: 14:7b:1b:02:40:e8:99:f3:b7:d5:26:4a:ae:10:d8:3d:46:ad: e4:67:5c:60:53:f0:b2:b6:ef:f1:00:39:83:1b:c3:93:cb:0e: 4e:6d:a4:24:08:74:e6:0a:a8:0b:a4:d2:34:7b:f0:68:7a:3e: f2:0e:9d:fb:db:c2:64:45:c6:fa:09:3e:d8:32:ce:94:ee:27: b0:44:9c:59:f3:8c:6b:82:e2:e9:63:1c:7d:e4:e7:60:95:89: 42:73:76:ab:73:d0:c8:80:a4:ee:52:db:8e:86:b3:96:56:13: 99:d4:0e:b3:48:84:b0:eb:1c:a2:6a:58:8d:16:00:14:39:c9: 76:d2:ae:a7 -BEGIN CERTIFICATE- MIIGSTCCB[...(some other stuff here)...]yXbSrqc= -END CERTIFICATE-

On the Server I used the tool ldp.exe. Connection over ssl(port 636) can be established and bind is OK there. So the server seems to be configured right. It accepts ssl connections. Nevertheless php still fails to bind, when i try to log in the Wiki.