The WolfTech Active Directory domain has six domain controllers, operating out of multiple campus data centers. All are global catalog servers. The domain is operating at the Windows 2016 domain functional level. The forest is operating at the Windows 2016 forest functional level. All domain controllers are running the Windows Server 2016 operating system.
Applications and services requiring LDAP authentication and querying against WolfTech AD should use the virtual (vIP) host “ldaps.wolftech.ad.ncsu.edu”. This host listens on the secured (encrypted) LDAP ports of 636 (ldapS) and 3269 (global catalog; gc-ldapS), and forwards requests to supported domain controllers in it’s server pool. Encryption is required using the TLS v1.2 protocol; SSL and earlier TLS versions are no longer supported. To avoid certificate trust issues when connecting to “ldaps.wolftech.ad.ncsu.edu”, please ensure you trust the InCommon certificate chain in your application’s certificate store.
The virtual host “ldaps.wolftech.ad.ncsu.edu” has domain controllers in each datacenter in the pool at all times for redundancy. Domain controllers may be moved in and out of the vIP server pool for maintenance and upgrades.