[SSSD-users] How do new LDAP security recommendations from MS affect sssd clients?

All, Microsoft has announced a new vulnerability in its AD domain controllers. They are promising a fix by mid-Jan 2020, but in the meantime they have offered LDAP hardening recommendations so that these controllers are not vulnerable. Those recommendations are: - enable LDAP channel binding and - LDAP signing on Active Directory Domain Controllers. (I don't pretend to know what that is.) My question is -- if our AD admins implement these recommended hardenings, what impact will that have on our sssd clients? Spike