03/26/2020 53 People found this article helpful 449,274 Views
Microsoft announce that "LDAP Channel Binding and LDAP Signing Requirements" is scheduled coming Windows update on March 2020.
AD authentication for the SSLVPN user will be affected with its update and describe how to avoid its impact beforehand.
In an upcoming release in March 2020, Microsoft will provide a Windows update that by default will change the LDAP channel binding and LDAP signing to more secure configurations
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/ADV190023
SMA100 series
NOTE: TCP 636 port needs to be opened /listening at Windows Server and also CA cert for LDAPS needs to be imported into the SMA appliance.
SMA1000 series
NOTE:TCP 636 port needs to be opened /listening at Windows Server and also CA cert for LDAPS needs to be imported into the SMA appliance.