LDAP Coursework Example | Topics and Well Written Essays - 2000 words

LDAP - Coursework Example As its name shows, it is a lightweight client-server protocol which is used for directory services, particularly the directory services which are based on X.500. Additionally, LDAP is implemented on TCP/IP or other connection oriented data transfer services. LDAP supported user programs are able to inquire LDAP servers to search for entries using a variety of techniques. In this scenario, LDAP servers’ directory holds all the data in its entries, as well as cleans can be employed to choose immediately the group or person we desired, and provide immediately the data and information we desired. On the other hand, LDAP is not restricted to contact details, or yet data regarding diverse public. LDAP can also be used to search for pointers to printers, encryption credentials as well as additional services on a framework, in addition to particular sign-on where one password for a client is distributed among a lot of services. Moreover, LDAP is very useful for some types of directory related details, where quick searches as well as fewer repeated database based updates are the standard (Gracion, 2010; Briggs & Spence, 2000; The Linux Documentation Project, 2010). This paper presents a comprehensive analysis of the security features which LDAP supports, then it will assess that how can access control list be implemented on the LDAP servers. Afterward it will also analyze the security auditing features that LDAP supports in addition to the detection of brute forcing attacks (such as NAT) against a LDAP server. LDAP AN OVERVIEW Lightweight Directory Access Protocol (LDAP) offers a network directory service that is used as a central database containing the vital data and information regarding the groups, public and additional units that form a business. Seeing that each organization's framework and its accurate description of necessary information can be diverse, thus in this scenario a directory service has to be extremely tailored and supple. However, it is an in trinsically difficult task. In this scenario, the X.500 network protocol intended for directory services is a main aspect under consideration. In view of the fact that it was intended to offer extensive directory services for huge and intricate businesses, therefore, X.500 is itself a huge and complicated network protocol, consequently in order that a trivial adaptation of it was developed which is acknowledged as LDAP. LDAP, explained in RFC 1777, is considered as a division of the X.500 network protocol, as well as it has been applied more extensively as compared to X.500 itself has been deployed in any framework (Bauer, 2003; Donnelly, 2000; Briggs & Spence, 2000). In this scenario, it can be said that LDAP and X.500 are unconfined network protocols, similar to TCP/IP; neither is an individual suite. Seeing that a network protocol has to be applied in a number of ways of software, like that a server domain, or kernel component, or else a user program. Additionally, as compared to TCP/IP, all the performances of LDAP are not similar or yet totally able to communicate (with no alterations). Fortunately LDAP is implemented and designed to be widespread. Moreover,