Bug 52014 - AD Connector: change default port for AD LDAP connections to 636/SSL
AD Connector: change default port for AD LDAP connections to 636/SSL
Status: NEW
Product: UCS
Classification: Unclassified
Component: AD Connector
UCS 4.4
Other Linux
: P5 normal (vote)
: ---
Assigned To: Samba maintainers
Samba maintainers
:
Depends on:
Blocks:
  Show dependency treegraph
 
Reported: 2020-09-15 11:47 CEST by Ingo Steuwer
Modified: 2020-09-15 13:27 CEST (History)
1 user (show)

See Also:
What kind of report is it?: ---
What type of bug is this?: ---
Who will be affected by this bug?: ---
How will those affected feel about the bug?: ---
User Pain:
Enterprise Customer affected?:
School Customer affected?:
ISV affected?:
Waiting Support:
Flags outvoted (downgraded) after PO Review:
Ticket number:
Bug group (optional):
Max CVSS v3 score:


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Ingo Steuwer univentionstaff 2020-09-15 11:47:19 CEST
Microsoft will deactivate unencrypted communication over LDAP. We might be affected in the AD Connector as it uses port 389, which allows both encrypted and unencrypted communication and might be "closed" by default (needs to be checked)

We should review the changes, currently I propose to switch to port 636/SSL for new installations.