LDAP (11)

• Security Policy

  • defines how and who can access and change data
  • users must "authenticate" when "binding" to the directory
    • password based authentication
    • certificate based authentication
  • anonymous access is possible
  • Access Control Lists: permissions (read, write, search, add, delete), filters, users, groups
  • LDAPS - SSL encrypted LDAP connections

• LDAP v2 security using Kerberos version 4

• LDAP v3 uses Simple Authentication and Security Layer (for Authentication, Integrity, Confidentiality)

Previous slide

Next slide

Back to first slide

View graphic version