May 30 2023 05:01 PM
We have On-prem Active Directory, users and applications are authenticated by AD to access network resources.
Please advise if there is a way to secure or delegate AD LDAP "bind" only to admins or specific service accounts. Currently anyone with valid credentials can "bind" Active Directory and traverse through OUs and see all AD information, is it possible to limit it to only Administrators and service accounts and have LDAP Kerberos authentication in service. thank you!
May 31 2023 02:32 AM
May 31 2023 07:27 AM
@Alban1998 thank you for reply, I thought so too, just wanted to double-check with experts. And LDAP binding, when used for application to authenticate users, there is no such permission in AD correct?