Learn more about LDAP.

The Lightweight Directory Access Protocol -- commonly referred to simply as LDAP -- is the most widely used network protocol used to access a directory of users, computers, groups, etc.

LDAP is normally used by applications to access a directory that contains the identity of users who can sign in. Having the application connect to the directory server using the user's login ID and password is often used to authenticate users. Testing a user's membership in security groups in the directory or using an attribute based access control policy based on identity attributes in the directory are common strategies for authorizing user actions within an application.

Return to Identity Management Concepts