![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(9.6, 14.000000000000002%, 10%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERS%3C/text%3E%3C/svg%3E)
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(0, 61%, 10%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EHP%3C/text%3E%3C/svg%3E)
Hi Rakesh,
After the latest security update, your scanners stopped working because the domain controllers now require a more secure way of talking to them. The scanners were using an older LDAP method that isn’t allowed anymore, so the server rejects their requests. To fix this, the devices need to support secure LDAP (called LDAPS), usually by updating their firmware or changing their settings to use port 636 with encryption. If the scanners are too old to handle LDAPS, the only option is to loosen the new security rules on the server, but that reduces protection and isn’t recommended. In short, the network is fine, the issue is that the scanners must be updated or reconfigured to use the newer secure method.
You can start by checking scanner LDAPS support and reviewing LDAP channel binding requirements.
Harry.