Regarding the Windows security update program early 2020, which will change the LDAP channel binding and LDAP signing to more secure configurations.
ADV190023 | Microsoft Guidance for Enabling LDAP Channel Binding and LDAP Signing
If SASL option is used for the AD endpoints, does this change affect the behavior?
Release : 14.x
Component : CA Identity Manager
The current SASL connection uses the option to sign.
So it should work fine with current AD connections in case of SASL.