after update SMC from 9.6.3 to 9.7.3 LDAPS to Microsoft DC doesn't work anymore.In server.log I find
... [Root exception is javax.net.ssl.SSLHandshakeException: No appropriate protocol (protocol is disabled or cipher suites are inappropriate)].....
LDAP without SSL is running fine.
This is caused by the underlying Java version deactivating TLS 1.0 and 1.1 that Sophos Mobile still uses to establish a connection to the LDAP server. Kindly follow the steps below:
After following this procedure, the Sophos Mobile Server will utilize TLS 1.2 for the LDAPS connection.
problem solved, thankyou very much.
You're always welcome Michael, if you have more queries in the future, please feel free to reach us.