HIGH
Source
CloudSploit
ID
open-ldaps

Open LDAPS

Determines if TCP port 636 for LDAP SSL is open to the public

LDAP SSL port 636 is used for Secure LDAP authentication. Allowing Inbound traffic from any IP address to TCP port 636 is vulnerable to DoS attacks. It is a best practice to block port 636 from the public internet.

Restrict TCP port 636 to known IP addresses.