How to block LDAP port
Dear All
One of my application KTDMS has been configured to use LDAP and i have provided the BaseDN name Port and Password it is working for security reasons i want to stop LDAP to make a connection to KTDMS server temporarily. is there any other way to block LDAP
so that Application would not authenticate users
Regards and God blessings
RaSa
October 7th, 2010 4:24am
You can use a firewall to block the ports
http://geekswithblogs.net/TSCustomiser/archive/2007/05/09/112357.aspx
Free Windows Admin Tool Kit Click here and download it now
October 7th, 2010 5:09am
Hi,
I have saw another post of yours at
http://social.technet.microsoft.com/Forums/en-US/winserverDS/thread/12b3c841-a797-4a87-9eff-50374ea1eefb
For the problem with conflicting ports, as a workaround, you can move the 3rd party application to a member server. If you must run both Active Directory and the application
on the same server, you can change LDAP Port Assignments for this application. To do so, you need to contact the software vendor for assistance.
Active Directory use LDAP via TCP port 389 for client communications and TCP port 636 for secure client communication ( SSL ). Please do not black port 389.
You can check the following table:
Application protocol
Protocol
Ports
Global Catalog Server
TCP
3269
Global Catalog Server
TCP
3268
LDAP Server
TCP
389
LDAP Server
UDP
389
LDAP SSL
TCP
636
LDAP SSL
UDP
636
IPsec ISAKMP
UDP
500
NAT-T
UDP
4500
RPC
TCP
135
RPC randomly allocated high TCP ports¹
TCP
1024 - 65535
49152 - 65535²
For more information, please refer to: Service overview and network port requirements for the Windows Server system
http://support.microsoft.com/kb/832017
Thanks.
NinaThis posting is provided "AS IS" with no warranties, and confers no rights.
October 7th, 2010 5:30am
Dear Nina
what i need is ,MY workstation which is making a connection to my GC and LDAP through an application level how can i stop these connections so that users can not authenticate to my AD or GC
regards and Blessings
RaSa
Free Windows Admin Tool Kit Click here and download it now
October 7th, 2010 5:59am
Dear
the only thing i want to stop access LDAP from a computer to MY AD server
RegardsRaSa
October 7th, 2010 6:00am
Dear ALL Thanks for all your Inputs I have succeeded with what i want i try using "IPSEC policy" created a policy to block ports and it works... Regards And Godblessings for your timeRaSa
Free Windows Admin Tool Kit Click here and download it now
October 8th, 2010 2:02am