Open Protocol: Lightweight Directory Access Protocol (LDAP)
What is LDAP?
LDAP is a lightweight protocol used to access and modify centrally stored information on directories supporting X.500 models.
LDAP Client/Server Model
- An LDAP client application connects to an LDAP server. This process also referred to as “binding to a server”.
- Based on the access restrictions configured on the server, the LDAP server either accepts or refuses the bind/connection request.
LDAP Connection Information
When you are trying to bind LDAP client to LDAP server, you would need the following basic information.
Hostname: Server hosting the LDAP directory
Ports: 389 (LDAP with StartTLS), 636 (LDAPS with SSL/TSL enabled)
Base DN: Your domain in DN format. For example, dc=mydomain, dc=com for mydomain.com
Username and Password: In addition to authenticating with a certificate, some LDAP clients require that you enter a username and password.
Client Certificate and Key Files: If the LDAP client does not offer a way to authenticate to LDAP with a client certificate, use stunnel as a proxy.