Certified Ethical Hacker (CEH v13) — Question 253

After an audit, the auditors inform you that there is a critical finding that you must tackle immediately. You read the audit report, and the problem is the service running on port 389.
Which service is this and how can you tackle the problem?

Answer options

• A. The service is NTP, and you have to change it from UDP to TCP in order to encrypt it.
• B. The service is LDAP, and you must change it to 636, which is LDAPS.
• C. The findings do not require immediate actions and are only suggestions.
• D. The service is SMTP, and you must change it to SMIME, which is an encrypted way to send emails.

Correct answer: B

Explanation

The service running on port 389 is LDAP, which is used for directory services. To address the critical finding, you must transition it to port 636, which uses LDAPS for secure communication. Options A and D refer to incorrect services and solutions, while option C incorrectly suggests that no immediate action is required.