Configuring the signing requirement for LDAP clients

To configure the signing requirement for LDAP clients using the Group Policy Management Console:

1. Press Win+R, enter gpmc.msc in the displayed window, and press Enter.

   This opens the Group Policy Management snap-in.

2. In the console tree, select Forest <domain name> → Domains → <domain name>.
3. In the context menu of the Default Domain Policy object, select Edit.
4. In the Group Policy Management Editor window, select Computer Configuration → Policies → Windows Settings → Security Settings → Local Policies → Security Options, and in the workspace, select the Network security: LDAP client signing requirements policy.
5. In the policy properties window, select the Define this policy setting check box and in the drop-down list below, select Negotiate signing.
6. Click OK.

Wait until the setting is applied on all client computers. Do not begin configuring the signing requirement for the LDAP server until this happens.