Hello,
Thank you so much for your posting.
According to my research, there is only one Event ID that is directly related to LDAP over SSL, which is Event 1220. For more information, we could refer to:
There seems to be no event ID for LDAPS events in event viewer showing that what is using LDAPS based on my research. There are some events which are related to LDAP signing, such as Event 2887, 2888 and 2889.
Reference:
2020 LDAP channel binding and LDAP signing requirements for Windows
https://support.microsoft.com/en-us/help/4520412/2020-ldap-channel-binding-and-ldap-signing-requirements-for-windows
Have we enable LDAPS?
LDAP over SSL/TLS (LDAPS) is automatically enabled when you install an Enterprise Root CA on a domain controller (although installing a CA on a domain controller is not a recommended practice).
We could follow these steps to verify that LDAPS is enabled:
- On the client, start Ldp.exe
For example:
- On the Connection menu, click Connect.
- Type the name of the LDAP server (e.g. domain controller or AD LDS/ADAM server) to which you want to connect.
- Type 636 as the port number.
- Click OK.
Besides, there is no way to make clients prefer LDAPS because the type of connection depends on the application that is running on the client computer.
Thanks so much.
Best regards,
Hannah Xiong
============================================
If the Answer is helpful, please click "Accept Answer" and upvote it.
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.