Use of SASL unsigned LDAP bind

book

Article ID: 141511

calendar_today

Updated On:

Products

CA Identity Manager CA Identity Suite

Issue/Introduction

Regarding the Windows security update program early 2020, which will change the LDAP channel binding and LDAP signing to more secure configurations.

ADV190023 | Microsoft Guidance for Enabling LDAP Channel Binding and LDAP Signing
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/adv190023


If SASL option is used for the AD endpoints, does this change affect the behavior?



Environment

Release : 14.x
Component : CA Identity Manager

Resolution

The current SASL connection uses the option to sign.
So it should work fine with current AD connections in case of SASL.

Attachments