Ubuntu
sssd package

  1. Bug #1868703
  2. Comment #0

Comment 0 for bug 1868703

Revision history for this message
Tobias Karnat (tobiaskarnat-remondis) wrote : Backport ad_use_ldaps because of ADV190023

Please backport the following patch to add the option ad_use_ldaps.

With this new boolean option the AD provider should only use the LDAPS port
636 and the Global Catalog port 3629 which is TLS protected as well.
https://github.com/SSSD/sssd/pull/969

This is required as LDAP signing is now required.
https://support.microsoft.com/en-us/help/4520412/2020-ldap-channel-binding-and-ldap-signing-requirements-for-windows