LDAP stands for Lightweight Directory Access Protocol.
As the name suggests, it is a lightweight client-server protocol. It is used to access and manage directory information. So in another way, we can say that it is an open and cross-platform protocol used for directory services authentication.
LDAP is a directory service protocol that runs over TCP/IP. So before going inside LDAP, we have to know that what is Active Directory.
What is Active Directory?
Active Directory(AD) is a directory service, use to provides authentication, group and user management, policy administration. Active Directory stores data as objects. It arranges the object in a way that makes access easy.
It authenticates and authorizes all users and computer. It verifies access when a user tries to sign in or attempt to connect. It controls which users have access to each resource. For example, an administrator has a different level of access to data than an end user.
The Difference Between LDAP and Active Directory
LDAP is a way of speaking to Active Directory.
AD is a directory services database, and LDAP is one of the protocols you can use to talk to it.
How is information stored and arranged in the directory?
The LDAP directory service model is based on entries. So what are the entries?
An entry is a collection of attributes that has a name, called a distinguished name (DN). So Each of the entry’s attributes has a type and more values. Like in this image you can see that we are having an attribute with Name John and address India. It can contain more values like password, userId and so on.
Here the entries are arranged in a hierarchical tree-like structure.
to be continued..