diff --git a/install/share/dna.ldif b/install/share/dna.ldif
index 8660fdf5f70..8d5cddbce81 100644
--- a/install/share/dna.ldif
+++ b/install/share/dna.ldif
@@ -38,4 +38,9 @@ dn: cn=Distributed Numeric Assignment Plugin,cn=plugins,cn=config
 changetype: modify
 replace: nsslapd-pluginEnabled
 nsslapd-pluginEnabled: on
-
+-
+add: dnaRemoteBindMethod
+dnaRemoteBindMethod: SASL/GSSAPI
+-
+add: dnaRemoteConnProtocol
+dnaRemoteConnProtocol: LDAP
diff --git a/ipaserver/install/plugins/update_dna_shared_config.py b/ipaserver/install/plugins/update_dna_shared_config.py
index 955bee5dd83..6558958b96e 100644
--- a/ipaserver/install/plugins/update_dna_shared_config.py
+++ b/ipaserver/install/plugins/update_dna_shared_config.py
@@ -53,6 +53,11 @@ def get_shared_cfg(self, plugin_name):
         else:
             logger.debug('Found DNA config %s', dna_config_base)
 
+        remote_bind_method = entry.single_value.get("dnaRemoteBindMethod")
+        if remote_bind_method is not None:
+            logger.error(
+                "dnaRemoteBindMethod is set on the global DNA entry already.")
+            return None
         sharedcfgdn = entry.single_value.get("dnaSharedCfgDN")
         if sharedcfgdn is not None:
             sharedcfgdn = DN(sharedcfgdn)