This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

[Latest KB's] Sophos Web Appliance: No configuration changes required to support Microsoft’s LDAP channel binding and LDAP signing recommendations

Hi Community,

On 10 March 2020, Microsoft recommended to move to LDAP channel binding and LDAP signing to avoid replay attacks on the LDAP communication.

After the hardening changes are done, Simple Authentication and Security Layer (SASL) LDAP binds that do not request signing (integrity verification) will be rejected by Active Directory domain controllers.

This knowledge base article describes how the Sophos Web Appliance communicates with Active Directory / LDAP.



This thread was automatically locked due to age.