This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(281.6, 91%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EM%3C/text%3E%3C/svg%3E)
Hi,
I have configured LDAP over SSL in my AD Server. Using ldp I am able to connect successfully using port 636.
Shall I need to configure in GPO for Client Computers to access LDAP which is configured over SSL or will connect to that server without any configuration
Please advise
Hello,
Thank for reaching out.
Yes, you may Enable GPO for LDAP sign-in to improve security.
https://learn.microsoft.com/en-us/troubleshoot/windows-server/identity/enable-ldap-signing-in-windows-server
Thank you.
Hi,
LDAPS is primarily intended to support simple bind requests, so plain text passwords are encrypted when transmitted over the network. To use this functionality the application or service must be specifically written to support LDAPS, as it needs to request a SSL based connection. Typically security and network devices use simple binds when LDAP\S is used.
I don't believe there is any GPO settings that would force normal clients to use LDAPS as the default connections method.
Gary.