How do you switch from port 389 to port 636 for LDAP queries?
As of March 2020 Microsoft will not support LDAP queries on port 389. How do I get ready?
Answers (2)
Top Answer
For authentication see:
https://support.quest.com/technical-documents/kace-systems-management-appliance/10.1%20common%20documents/administrator-guide/39#TOPIC-1322049
For Labels see:
https://support.quest.com/technical-documents/kace-systems-management-appliance/10.1%20common%20documents/administrator-guide/34#TOPIC-1322032
First and foremost:
Setup your AD that it supports LDAPS. This is nothing KACE will do for you.
(it can help if you need to share certs or similar)
Then change everywhere the Port from 389 to 636 and the server from 127.0.0.1 to ldaps://127.0.0.1 (use your own servers here)
1. LDAP-Labels: SMA/adminui/ldapfilter_list.php
2. User Auth: SMA/adminui/settings_authentication.php
and follow the labels/user groups from there
At the same time you could also setup your appliance for using a TLS certificate.
