According to this Microsoft article, Microsoft will release a security update on Windows Update to enable LDAP channel binding and LDAP signing hardening changes.
This update will be available in March 2020, which affects all Microsoft Active Directory servers. Know the impact of this update on Hosted Email Security (HES) and Trend Micro Email Security (TMEMS).
Customers may not have chosen the option Use SSL when connecting to their Active Directory server, as shown below:
In such scenario, they would get an error similar below when they deploy the new patch of Microsoft on LDAP channel binding which would be released on March 2020.
The solution is to enable Use SSL and then update the setting.
To update the setting:
- Double-click the existing entry.
- Tick the Use SSL checkbox.
- Click Update.
Once completed, the Active Directory Sync Tool should work well. This solution applies for HES and TMEMS.