ONTAP Discussions

LDAP connection failures when channel binding is enforced by the Windows LDAP server

pal
4,808 Views
Change 1:Use the LdapEnforceChannelBinding registry entry to make LDAP authentication over SSL/TLS more secure  

Are there any progress on BUG 1136213 ?

1 ACCEPTED SOLUTION

ttran
4,595 Views

Hi Pal,

 

Our Engineering Team is working closely with Microsoft and has provided an update last week that the fix for RFE 1136213: Implement channel binding tokens for LDAP with StartTLS is tentatively scheduled for ONTAP 9.10. As paul_stejskal mentioned, please work with your Account Team if you need this fixed earlier.

 

 

Regards,

 

Team NetApp

Team NetApp

View solution in original post

3 REPLIES 3

TMACMD
4,781 Views

Well, per the bug if you really want to turn that feature on instead of setting to 2:

 

Set "LdapEnforceChannelBinding" on the LDAP server to "1" which indicates "Enabled,
 when supported". 

 

paul_stejskal
4,721 Views

If you need this fixed, I would recommending talking to your account team. They can help prioritize this if needed if this is going to break things for you.

ttran
4,596 Views

Hi Pal,

 

Our Engineering Team is working closely with Microsoft and has provided an update last week that the fix for RFE 1136213: Implement channel binding tokens for LDAP with StartTLS is tentatively scheduled for ONTAP 9.10. As paul_stejskal mentioned, please work with your Account Team if you need this fixed earlier.

 

 

Regards,

 

Team NetApp

Team NetApp
Public