Question regarding unsigned binding to Active Directory
Question regarding unsigned binding to Active Directory
- Subject: Question regarding unsigned binding to Active Directory
- From: "Steffy, Fred" <email@hidden>
- Date: Tue, 17 Apr 2018 22:26:00 +0000
- Thread-topic: Question regarding unsigned binding to Active Directory
Our network team has a concern with our current binding procedure. Right now,
we bind macs manually via the Active Directory component in Directory Utility.
This is supposedly an unsigned connection according to our network team. They
need to make a change to our active directory policies and now wonder if this
will drop or prevent macs from joining Active Directory. Here is their
questions:
Our mac computer accounts are binding to active directory over unsigned ldap.
It is necessary we modify our active directory policy to prohibit unsigned
traffic in order to comply with both internal and external mandated policies.
Once we do so, the concern is the macs will no longer be able to bind or to
join.
How can we configure the mac bind to occur using signed traffic?
Will the macs automagically bind using signed ldap once it is no longer an
option on the Active Directory side or do we need to make a change to a config
on the macs?
We can provide log data from our siem if that is helpful.
We have a mix of clients running from 10.8.X upwards of 10.13.4. Updating all
clients to 10.13.4 would not be a hardship, but we would need to know if this
would resolve some of the network team's issues...any assistance would be
greatly appreciated.
Fred Steffy
Instructional Technology Specialist
MiraCosta College
One Barnard Drive, MS 11A
Oceanside, CA 92056
760-795-6736
_______________________________________________
Do not post admin requests to the list. They will be ignored.
AppleScript-Users mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
Archives: http://lists.apple.com/archives/applescript-users
This email sent to email@hidden