域控制器: LDAP 服务器签名要求Domain controller: LDAP server signing requirements
04/19/2017
本文内容
适用于Applies to
Windows 10Windows 10
本文介绍域控制器的最佳实践、位置、值和安全注意事项 :LDAP 服务器签名要求 安全策略设置。This article describes the best practices, location, values, and security considerations for the Domain controller: LDAP server signing requirements security policy setting.
参考Reference
此策略设置确定 LDAP 服务器的轻型目录访问 (协议) LDAP 客户端是否要求 LDAP 客户端协商数据签名。This policy setting determines whether the Lightweight Directory Access Protocol (LDAP) server requires LDAP clients to negotiate data signing.
未签名的网络流量易受中间人攻击,其中,一位管理员捕获服务器和客户端设备之间的数据包,并修改数据包,然后再将它们转发到客户端设备。Unsigned network traffic is susceptible to man-in-the-middle attacks, where an intruder captures packets between the server and the client device and modifies them before forwarding them to the client device. 对于 LDAP 服务器,恶意用户可能导致客户端