Stop trusted binding with an LDAP directory
You can use Directory Utility to stop trusted binding between a computer and an LDAP directory that permits but doesn’t require trusted binding.
Click the lock icon.
Enter an administrator’s user name and password, then click Modify Configuration (or use Touch ID).
Select LDAPv3, then click the Edit button (looks like a pencil).
If the list of server configurations is hidden, click Show Options.
Select a server configuration, then click Edit.
Click Unbind, enter the name and password of an LDAP directory administrator (not a local computer administrator), then click OK.
If trusted binding hasn’t been set up on this computer, the Unbind button does not appear.
If you see an alert saying the computer can’t contact the LDAP server, click OK if you want to forcibly stop trusted binding.
If you forcibly stop trusted binding, this computer still has a computer record in the LDAP directory. Let the Active Directory administrator know to remove the computer record.