الحل يكمن في هذه الخطوات قم بتطبيقها على كروب بولسي وستنتهي المشكله ان شاء الله
To use Group Policy to configure all domain controllers to reject unsigned and simple LDAP bind requests:
Open the Group Policy Management Console. To open the Group Policy Management Console, click Start. In Start Search, type Group Policy Management. Right-click the Group Policy Management icon on the Start menu, and then click Run as administrator.
Expand the forest and domain objects until you locate the domain object for the set of domain controllers that you want to configure.
Expand the Domain Controllers object, right-click Default Domain Controllers Policy, and then click Edit.
Expand the following objects in the Group Policy Management Editor: Computer Configuration, Policies, Windows Settings, Security Settings, and Local Policies, and then click Security Options.
In the right pane, double-click the Domain Controller: LDAP server signing requirements policy.
Ensure that the Define this policy setting check box is selected, use the selection box to set Require Signing, and then click OK.
Review the information in the Confirm Setting Change dialog box,and if you are sure you want to make this change, click Yes to continue.