Enable signed LDAP queries for macOS Outlook 2019 and Outlook 365

Microsoft will require binding and signing of LDAP queries for all Windows hosts in an operating system security patch sometime in 2020. The Active Directory servers at Indiana University are currently monitoring client connections that will fail when the patch is applied. The list of hostnames includes many macOS machines joined to Active Directory or connecting to Exchange.

Although UITS does not anticipate issues for Macs bound to Active Directory, the number of unsigned LDAP queries from macOS clients has generated a great deal of noise. To help the Active Directory administrators monitor these future LDAP changes, follow the steps below to enable signed LDAP queries for macOS Outlook 2019 and Outlook 365:

  1. Launch Outlook.
  2. From the Outlook menu in the top left, select Preferences.
  3. Click Accounts.
  4. Select your IU Exchange account and click Advanced.
  5. Within the Server tab, under "Directory service", set the server to ads.iu.edu and check Use SSL to connect (recommended).

    Outlook in macOS: On the 'Server' tab, check 'Use SSL to connect (recommended)' and set server to 'ads.iu.edu'

  6. Click OK and exit the "Accounts" window.

This is document bccz in the Knowledge Base.
Last modified on 2021-09-07 15:53:54.