Lightweight Directory Access is an application protocol that is used to crosscheck information on the server end. Get Advice. Follow I use this. Get Advice from developers at your company using Private StackShare. Sign up for Private StackShare. Sign up to add or upvote pros Make informed product decisions. Sign up to add or upvote cons Make informed product decisions. No Stats.
Of course, the cost difference reflects the notion of a wider breadth of functionality and the commercial nature of Microsoft solutions: OpenLDAP is free, and AD is not. AD requires licensing, and because it runs on premised equipment, the costs of AD hardware and maintenance can add up. Further, for organizations that leverage data centers or cloud infrastructure-as-a-service technology, leveraging an OpenLDAP server is often far more effective than Active Directory.
Of course, Active Directory has its advantages as well. For organizations that are largely Windows-based and intend to leverage only Azure cloud infrastructure, the combination of Active Directory and Azure AD can be quite beneficial. OpenLDAP is highly configurable for skilled engineers, making it a better choice for organizations with niche or nuanced needs.
If your environment is fully homogenous and based only on Microsoft and Windows, AD might be the best choice. In a Windows environment, IT administrators can use the Windows-based Active Directory Users and Computers console to perform nearly all management tasks. However, even in these environments, you still need to consider how to account for mobile and SaaS applications, Mac and Linux device support, non-Windows-based file servers, and networking gear, as AD generally does not support them without integrations or add-ons.
AD offers an easy-to-use GUI for configuring settings and managing users and groups. Multi-protocol directory services are growing in popularity as networks expand and disperse; companies need to authenticate users to a higher number and wider variety of resources, and different resources tend to work best with different protocols.
Ideally, an IAM tool or directory service should be able to authenticate and authorize users to all their IT resources, wherever they are including the cloud , using whichever protocol best suits the task. Both have usability issues. AD, while robust, can become complex when expanded with add-ons like Azure AD to manage diverse and dispersed environments.
The Overflow Blog. Does ES6 make JavaScript frameworks obsolete? Podcast Do polyglots have an edge when it comes to mastering programming Featured on Meta. Now live: A fully responsive profile. Related Hot Network Questions. Question feed. Stack Overflow works best with JavaScript enabled. Accept all cookies Customize settings.
0コメント