LDAP over SSL

M4 1 Reputation point
2021-09-20T05:57:59.233+00:00

Hi,

I have configured LDAP over SSL in my AD Server. Using ldp I am able to connect successfully using port 636.

Shall I need to configure in GPO for Client Computers to access LDAP which is configured over SSL or will connect to that server without any configuration

Please advise

Windows Server
Windows Server
A family of Microsoft server operating systems that support enterprise-level management, data storage, applications, and communications.
12,399 questions
0 comments No comments
{count} votes

2 answers

Sort by: Most helpful
  1. Limitless Technology 39,461 Reputation points
    2021-09-20T10:52:09.903+00:00

    Hello,

    Thank for reaching out.

    Yes, you may Enable GPO for LDAP sign-in to improve security.
    https://learn.microsoft.com/en-us/troubleshoot/windows-server/identity/enable-ldap-signing-in-windows-server

    Thank you.

    0 comments No comments

  2. Gary Reynolds 9,396 Reputation points
    2021-09-25T11:32:49.22+00:00

    Hi,

    LDAPS is primarily intended to support simple bind requests, so plain text passwords are encrypted when transmitted over the network. To use this functionality the application or service must be specifically written to support LDAPS, as it needs to request a SSL based connection. Typically security and network devices use simple binds when LDAP\S is used.

    I don't believe there is any GPO settings that would force normal clients to use LDAPS as the default connections method.

    Gary.

    0 comments No comments