312-50V11 · Question #894
After an audit, the auditors Inform you that there is a critical finding that you must tackle Immediately. You read the audit report, and the problem is the service running on port 369. Which service
The correct answer is A. The service is LDAP. and you must change it to 636. which is LDPAPS.. Port 389 (likely a typo as 369 in the question) is used by unencrypted LDAP; the fix is to migrate to LDAPS on port 636, which wraps LDAP traffic in SSL/TLS.
Question
After an audit, the auditors Inform you that there is a critical finding that you must tackle Immediately. You read the audit report, and the problem is the service running on port 369. Which service Is this and how can you tackle the problem?
Options
- AThe service is LDAP. and you must change it to 636. which is LDPAPS.
- BThe service is NTP. and you have to change It from UDP to TCP in order to encrypt it
- CThe findings do not require immediate actions and are only suggestions.
- DThe service is SMTP, and you must change it to SMIME. which is an encrypted way to send
How the community answered
(60 responses)- A77% (46)
- B13% (8)
- C3% (2)
- D7% (4)
Why each option
Port 389 (likely a typo as 369 in the question) is used by unencrypted LDAP; the fix is to migrate to LDAPS on port 636, which wraps LDAP traffic in SSL/TLS.
LDAP operates on port 389 (the question contains a likely typographical error of 369) and transmits directory service queries in cleartext, posing a serious interception risk. The remediation is to migrate to LDAPS (LDAP over SSL/TLS), which listens on port 636 and encrypts all directory traffic, directly addressing the critical audit finding.
NTP (Network Time Protocol) runs on port 123 using UDP, not port 369 or 389, so this service identification is incorrect.
A critical audit finding requires immediate mandatory remediation; describing it as optional or a suggestion contradicts the defined severity level.
SMTP runs on port 25, not port 369, and S/MIME is an email message encryption standard - not a replacement service or port migration for LDAP.
Concept tested: LDAP to LDAPS migration for encrypted directory traffic
Source: https://learn.microsoft.com/en-us/troubleshoot/windows-server/active-directory/ldap-over-ssl
Topics
Community Discussion
No community discussion yet for this question.