What will be the impact of changing LDAP port from 389 to 636 for AD-LDAP server connections
Applies to
ONTAP 9.5 and above
Answer
- There is no impact when LDAP port is changed from port 389 to 636.
- New sessions established after the change will be using port 636 except:
- ONTAP 9.13 or lower when using Prefered Domain Controller: See Bug 1529854
Additional Information
- How to change the LDAP port from 389 to 636 for AD-LDAP server connections
- Export a copy of the self-signed root CA certificate and install it on SVM to change port of LDAP from 389 to 636 for ONTAP to set up authenticated sessions between Active Directory-integrated LDAP servers to avoid issues.
- New session will be impacted if the certificate is not installed before enabling LDAPS.
- LDAPS concepts