How to stop ldap services to stop client from communicating to a DC?

Biswajeet Kumar 46 Reputation points


I am trying to stop the communication between client and a DC. I do no want the replication to stop between DCs. I have stopped KDC and netlogon service but client still reaching to the DC.

Is there a way to stop the LDAP services?


Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
4,008 questions
{count} votes

4 answers

Sort by: Most helpful
  1. Abhijeet-MSFT 526 Reputation points Microsoft Employee

    Ideal setup would be to put the DC in a diff site. If that's not possible, then you could increase the weight of LDAP service record for that DC and decrease the priority. However this set up is not a recommended one. You can refer for more details. There is no out of the box way to control this behavior from the client side.

  2. Vicky Wang 2,591 Reputation points


    Thanks for post.

    According to my knowledge, we could not disable LDAP.

    You force your applications to use LDAPS instead of blocking LDAP. Would you destroy the wall if you just want to change a brick at top of it?

    Active Directory depends on LDAP and if you try to modify that in a way to clock LDAP, you introduce new problems. So the anser is no.

    More information please refer to the following similar issue:

    Thanks for your support and understanding.

    Best Regards,


  3. Vicky Wang 2,591 Reputation points


    Just checking in to see if the information provided was helpful.

    Please let us know if you would like further assistance.

    Best Regards,

  4. Vicky Wang 2,591 Reputation points


    Welcome to share your current situation if there are any updates.

    Please feel free to let us know if you need further assistance.

    Best Regards,