OP5 Monitor - Microsoft LDAP changes - 2020 LDAP channel binding (ADV190023) – Support - ITRS Group

Who is affected?

Anyone who uses OP5 Monitor with LDAP AD integration without SSL/TLS.

What has changed?

Microsoft has proposed changes to security policies first (1) around LDAP signing and second (2) LDAP channel binding. The reason behind this is to increase the security for communications between LDAP clients and Active Directory domain controllers.

Link to Microsoft announcement: https://support.microsoft.com/en-us/help/4520412/2020-ldap-channel-binding-and-ldap-signing-requirements-for-windows

How to fix it in OP5 Monitor?

When these changes have been implemented in the Microsoft environment you will have to enable LDAP over SSL/TLS in the OP5 Monitor authentication module.

For more information see

How to integrate Active Directory with OP5 Monitor

https://support.itrsgroup.com/hc/en-us/articles/360020061394-How-to-integrate-Active-Directory-with-OP5-Monitor-

Certificate management for LDAP SSL (sldap) with Active Directory (Community submitted)

https://support.itrsgroup.com/hc/en-us/articles/360020055894-Certificate-management-for-LDAP-SSL-sldap-with-Active-Directory

Need help?

Contact Support

Articles in this section

OP5 Monitor - Microsoft LDAP changes - 2020 LDAP channel binding (ADV190023)

Comments

Articles in this section

Related articles