"Why port 389?"
A customer recently emailed me asking a few questions about the Unix agent communication security with Active Directory
- "Why does the Centrify Unix agent (adclient) communicate with Active Directory over port 389?
- How is this communucation secured?
- What are the implications to Active Directory? Specifically, how do we protect Active Directory against unsigned/unencrypted LDAP requests?"
Typically, this question tends to come from Security/Compliance and Unix teams. From their vantage, interacting with LDAP over 389 raises a flag, where traditionally communications over this port tend to be unencrypted. If the question comes from the Active Directory team, they are usually looking for confirmation and assurance that our interactions with Active Directory align with best practices and their secrity expecations.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.