Lightweight Directory Access Protocol (LDAP) Client
The Lightweight Directory Access Protocol (LDAP) client component provides the LDAP Client. LDAP is a directory service protocol that is used for connecting to, searching, and modifying Internet directories. The LDAP Client component simplifies writing directory service applications. This component supports the LDAP versions 2 and 3 protocols.
There are no services associated with this component.
No other components interact with this component.
The following table describes the configurable settings for this component.
|Default LDAP connection signing||Connections signed if possible||Specifies the type of connection signing that LDAP will use by default. Choose one of: Connections signed if possible, Connections signed only if requested by application, and Connections always signed.|
Note These values only affect applications that do not explicitly request signing when they bind. If an application explicitly requests signing, the LDAP client will always use signing, and will fail to bind if unable to do so.
The configuration setting cmiLdapClientIntegrity sets the DWORD registry value LdapClientIntegrity under the HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\LDAP registry key. This setting controls whether the LDAP client automatically attempts to negotiate a signed or integrity-validated session when a bind is performed.
Signing protects the session by detecting attempts to alter LDAP traffic on the network.
The Active Directory Service Interface (ADSI) LDAP Provider component is built over this component.
© 2006 Microsoft Corporation. All rights reserved.