I'm a network engineer with my company, but not a security expert. To enable new functionality of 1 of our record systems, which is hosted, the software vendor wants us to allow LDAPS connectivity to our internal domain controller. My gut tells me we shouldnt do this. What are the pros and cons of allowing this traffic? What would the worst case scenario be? If we were to allow it what would the best practice be?
Thanks in advance!!