What is LDAP in Security+?
D1 ยท General ยท CompTIA Security+ SY0-701LDAP (Lightweight Directory Access Protocol) is a protocol used to access and manage directory services โ databases of users, groups, computers, and other network resources.
Most commonly used with Active Directory (Microsoft's directory service). LDAP queries AD to look up users, authenticate, and retrieve attributes.
Ports: 389 (LDAP, unencrypted), 636 (LDAPS โ LDAP over TLS/SSL).
Most commonly used with Active Directory (Microsoft's directory service). LDAP queries AD to look up users, authenticate, and retrieve attributes.
Ports: 389 (LDAP, unencrypted), 636 (LDAPS โ LDAP over TLS/SSL).
LDAP injection is like SQL injection but targeting directory services. Always use LDAPS (port 636) to encrypt directory traffic. On the exam, LDAP = directory lookups; Kerberos = authentication tickets โ they work together in AD.