Can EEM bind to an Active Directory without a password?

Release : 17.2

Component : CA Embedded Entitlements Manager

Prior to Microsoft Server 2019, Active Directory allowed the EEM BIND to perform without supplying password credentials. 

This is still an option in the Directory Server, but the ability to disallow unauthenticated BIND can now be enabled; you should confirm if this is the case for your environment. 

The specific change is in

CN=Directory Service, CN=Windows NT, CN=Services, CN=Configuration

the attribute msDS-Other-Settings can now be given the entry

DenyUnauthenticatedBind=1

If this is set, a password is required.