Merge pull request #222758 from Justinha/adds-secure

added new LDAP policies

Author: BCS2022

articles/active-directory-domain-services/media/secure-your-domain/security-settings.png

@@ -10,7 +10,7 @@ ms.service: active-directory
 ms.subservice: domain-services
 ms.workload: identity
 ms.topic: how-to
-ms.date: 08/17/2022
+ms.date: 01/04/2023
 ms.author: justinha 
 ms.custom: devx-track-azurepowershell
 
@@ -25,6 +25,8 @@ This article shows you how to harden a managed domain by using setting setting s
 - Disable NTLM password hash synchronization
 - Disable the ability to change passwords with RC4 encryption
 - Enable Kerberos armoring
+- LDAP signing 
+- LDAP channel binding
 
 ## Prerequisites
 
@@ -44,12 +46,13 @@ To complete this article, you need the following resources:
 1. Choose your managed domain, such as *aaddscontoso.com*.
 1. On the left-hand side, select **Security settings**.
 1. Click **Enable** or **Disable** for the following settings:
-   - **TLS 1.2 only mode**
-   - **NTLM authentication**
-   - **Password synchronization from on-premises**
-   - **NTLM password synchronization from on-premises**
-   - **RC4 encryption**
-   - **Kerberos armoring**
+   - **TLS 1.2 Only Mode**
+   - **NTLM v1 Authentication**
+   - **NTLM Password Synchronization**
+   - **Kerberos RC4 Encryption**
+   - **Kerberos Armoring**
+   - **LDAP Signing**
+   - **LDAP Channel Binding**
 
    ![Screenshot of Security settings to disable weak ciphers and NTLM password hash sync](media/secure-your-domain/security-settings.png)