{"id":15121,"date":"2023-02-28T13:54:31","date_gmt":"2023-02-28T18:54:31","guid":{"rendered":"https:\/\/www.jumpcloud.com\/?p=15121"},"modified":"2024-07-01T09:00:50","modified_gmt":"2024-07-01T13:00:50","slug":"what-is-ldap-authentication","status":"publish","type":"post","link":"https:\/\/jumpcloud.com\/blog\/what-is-ldap-authentication","title":{"rendered":"What Is LDAP Authentication?"},"content":{"rendered":"\n<p>The Lightweight Directory Access Protocol (<a href=\"https:\/\/jumpcloud.com\/blog\/what-is-ldap\">LDAP<\/a>) is one of the core authentication protocols that was developed for directory services. LDAP historically has been used as a database of information, primarily storing information like:<\/p>\n\n\n\n<ul>\n<li>Users<\/li>\n\n\n\n<li>Attributes about those users<\/li>\n\n\n\n<li>Group membership privileges<\/li>\n\n\n\n<li>\u2026 and more.<\/li>\n<\/ul>\n\n\n\n<p>LDAP remains widely used in identity and access management (IAM). Security enhancements ensure that data is encrypted in transit and insecure authentication methods that are vulnerable to interception are rejected.<\/p>\n\n\n\n<p>This article covers what LDAP authentication is and how it works. Continue reading to gain a deeper understanding of the protocol and how <a href=\"https:\/\/jumpcloud.com\/platform\/cloud-directory\" target=\"_blank\" rel=\"noreferrer noopener\">JumpCloud\u2019s open directory platform<\/a> delivers cloud-based LDAP authentication.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"heading1\">Origins of LDAP<\/h2>\n\n\n\n<p>Before we define what LDAP authentication is, we should talk about the significance of LDAP as a whole. According to Tim Howes, co-inventor of the LDAP protocol, LDAP was developed at the University of Michigan where he was a graduate student to initially replace DAP (the Directory Access Protocol) and provide low-overhead access to the X.500 Directory \u2014 the directory service that LDAP would eventually replace.\u00a0<\/p>\n\n\n\n<blockquote class=\"wp-block-quote is-layout-flow wp-block-quote-is-layout-flow\">\n<p>I was in a group of young upstarts who were trying to bring Unix and the internet to campus. The internet was just emerging, and the International Organization for Standardization (ISO) was creating standards for everything related to the internet, including email and directory services. So, we were working with X.500, which was ISO\u2019s standard for directory services. At that time, I was also working for the University\u2019s information technology division. I was assigned this project to deploy an X.500 directory for the campus, which I completed, but I quickly learned that it was way too heavy of a protocol and too complicated for the machines that were on most people\u2019s desktops. LDAP came out of my desire to do something a little lighter weight in order to accommodate the Macs and PCs that were on everybody\u2019s desktop.<\/p>\n<cite>Tim Howes<\/cite><\/blockquote>\n\n\n\n<p>LDAP has been highly successful ever since it was first introduced in 1993. In fact, LDAP v3 became the internet standard for directory services <a href=\"https:\/\/en.wikipedia.org\/wiki\/Lightweight_Directory_Access_Protocol\" target=\"_blank\" rel=\"noreferrer noopener\">in 1997<\/a>. LDAP also inspired the creation of <a href=\"https:\/\/jumpcloud.com\/blog\/overview-of-cloud-ldap\">OpenLDAP<\/a>, the leading open source directory services platform.<\/p>\n\n\n\n<p>This, in turn, spawned numerous other open source solutions based on LDAP (like 389 Directory, Apache Directory Service), and formed the foundation for Microsoft <a href=\"https:\/\/jumpcloud.com\/blog\/jumpcloud-active-directory-comparison\">Active Directory<\/a> (AD) in the late 1990s. LDAP is also a core aspect of modern cloud directories like JumpCloud, which offers <a href=\"https:\/\/jumpcloud.com\/blog\/overview-of-cloud-ldap\">cloud LDAP.<\/a> So, it\u2019s safe to assume that LDAP authentication will be a foundational element of IAM for years to come.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"heading2\">Basic LDAP Authentication and Common Challenges<\/h2>\n\n\n\n<p>LDAP directory servers use a flexible schema, which means they can store a variety of attributes, including user credentials, phone numbers, group associations, and more, in the format that meets the organization\u2019s needs. As a result, a common LDAP use case is to <a href=\"https:\/\/jumpcloud.com\/blog\/one-core-identity-provider\/\">store core user identities<\/a>.&nbsp;<\/p>\n\n\n\n<p>Because LDAP directories can store user data and credentials, they can act as the source of truth for LDAP authentication. In an LDAP authentication transaction, the user inputs their credentials via a system or application, which are then compared to those stored within the LDAP directory database. If they match, the user is authenticated and granted access.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"h-how-does-ldap-authentication-between-a-client-and-server-work\">How does LDAP authentication between a client and server work?<\/h2>\n\n\n\n<p>Let\u2019s break down the LDAP authentication process.&nbsp;<\/p>\n\n\n\n<p>LDAP authentication is accomplished through a bind operation, and it follows a client\/server model. Typically, the client is an LDAP-ready system or application accessed by a user, and the server is the LDAP directory database.&nbsp;<\/p>\n\n\n\n<p>To authenticate, the client sends a bind request to the LDAP server along with the user\u2019s identifier (i.e., username or email) and password, which the client obtains when the user inputs their credentials. If the user\u2019s submitted credentials match the credentials associated with their core user identity that is stored within the LDAP database, the user is authenticated and granted access to the requested resources or information through the client. If the credentials sent don\u2019t match, the bind fails and access is denied.&nbsp;<\/p>\n\n\n\n<p>Rejecting insecure binds enhances security, protects sensitive data, and promotes good practices. Many compliance standards (e.g., <a href=\"https:\/\/jumpcloud.com\/blog\/nist-compliance-standards\">NIST<\/a>, <a href=\"https:\/\/jumpcloud.com\/blog\/cis-compliance\">CIS<\/a>) recommend enforcing secure LDAP communication.<\/p>\n\n\n\n<div class=\"wp-block-cgb-notification-card-wysiwyg notification-card note\"><div class=\"notification-card-content\"><div class=\"notification-card-icon\"><p><img decoding=\"async\" src=\"\/wp-content\/themes\/jumpcloud\/assets\/images\/gutenberg-blocks\/note-icon.png\"\/><\/p><\/div><div class=\"notification-card-copy is-type-body-default\"><div><strong class=\"notification-card-type\">Note:<\/strong> \n<p><em>There are some precautions organizations should take to secure their LDAP authentication processes, like <\/em><a href=\"https:\/\/jumpcloud.com\/blog\/ldap-vs-ldaps\"><em>prohibiting anonymous LDAP binds<\/em><\/a><em> and encrypting data in transit. <\/em><a href=\"https:\/\/jumpcloud.com\/blog\/ldap-vs-ldaps\"><em>Learn more about LDAP security in our blog.<\/em><\/a><\/p>\n <\/div><\/div><\/div><\/div>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"heading3\">What does it take to implement LDAP?<\/h2>\n\n\n\n<p>While LDAP authentication has certainly proven to be effective, the time and effort required to implement and customize LDAP-based infrastructure to meet a modern organization\u2019s identity management needs can be significant. Historically, LDAP has also been an on-prem implementation, requiring dedicated servers that must be integrated into an organization\u2019s overall identity management infrastructure (which has also historically been on-prem).&nbsp;<\/p>\n\n\n\n<p>This type of setup can be difficult to achieve, especially for smaller or cloud-forward IT organizations. After all, most modern organizations would like to shift their entire on-prem identity management infrastructure to the cloud. However, as more organizations replace their traditional on-prem infrastructure with cloud alternatives, the question becomes, <a href=\"https:\/\/jumpcloud.com\/blog\/online-ldap\">\u201cHow do I provide LDAP authentication without anything on-prem?\u201d<\/a><\/p>\n\n\n\n<div class=\"wp-block-cgb-notification-card-wysiwyg notification-card note\"><div class=\"notification-card-content\"><div class=\"notification-card-icon\"><p><img decoding=\"async\" src=\"\/wp-content\/themes\/jumpcloud\/assets\/images\/gutenberg-blocks\/note-icon.png\"\/><\/p><\/div><div class=\"notification-card-copy is-type-body-default\"><div><strong class=\"notification-card-type\">Note:<\/strong> \n<p>Learn about the <a href=\"https:\/\/jumpcloud.com\/blog\/costs-microsoft-active-directory#:~:text=Hidden%20Hardware%20Costs%20of%20Active%20Directory&amp;text=You%20must%20account%20for%20expensive,meet%20very%20specific%20hardware%20requirements.\">hidden costs<\/a> of on-prem LDAP solutions like Active Directory.<\/p>\n <\/div><\/div><\/div><\/div>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"heading4\">Cloud-Based LDAP Authentication<\/h2>\n\n\n\n<p>Fortunately, cloud-based directories and <a href=\"https:\/\/jumpcloud.com\/platform\/cloud-directory\" target=\"_blank\" rel=\"noreferrer noopener\">open directory platforms<\/a> have emerged, which can provide LDAP authentication as a cloud-based service.<\/p>\n\n\n\n<p>JumpCloud, for example, not only provides cloud-based LDAP authentication, but also securely manages and connects users to their systems, applications, files, and networks without anything on-prem. This is because JumpCloud takes an open directory approach, where organizations can manage work on their terms.<\/p>\n\n\n\n<p>JumpCloud can act as your core identity provider or integrate seamlessly with others, accommodate all devices with an OS-agnostic platform, and connect users to all the resources they need by leveraging multiple protocols, including LDAP, SAML, RADIUS, SSH, OAuth, and more. The end result is that IT organizations are free to leverage the best resources for them, knowing they can effectively manage as little or as much as they want with JumpCloud.<\/p>\n\n\n\n\n<div class=\"promotion-banner-small is-flex-direction-column has-items-aligned-flex-start has-items-aligned-center-tablet\">\n    <div class=\"promo-small-image is-hidden-mobile\">\n        <img decoding=\"async\" src=\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2023\/03\/hybrid-work-promo-person-on-laptop-aspect-ratio-160-110.jpeg\" alt=\"JumpCloud\">\n    <\/div>\n    <div class=\"promo-small-content\">\n        <p class=\"is-type-body-tiny is-type-weight-bold is-important promo-small-title\">\n            Enable Secure Hybrid Work Anywhere, Anytime        <\/p>\n        <p class=\"is-type-body-default is-important\">\n            Identity, access, and device management from a single cloud-based console        <\/p>\n    <\/div>\n    <div class=\"promo-small-cta\">\n        <a href=\"https:\/\/jumpcloud.com\/use-cases\/remote-work\" data-promo=\"Enable Hybrid Work\" class=\"button is-primary-green promo-small-banner-link\">Learn More<\/a>\n    <\/div>\n<\/div>\n\n\n\n\n<h2 class=\"wp-block-heading\" id=\"h-learn-more-about-ldap-authentication-from-jumpcloud\">Learn More about LDAP Authentication From JumpCloud<\/h2>\n\n\n\n<p>JumpCloud\u2019s open directory platform is interoperable with other identity providers (IdPs), such as <a href=\"https:\/\/jumpcloud.com\/solutions\/modernize-active-directory\" target=\"_blank\" rel=\"noreferrer noopener\">Active Directory<\/a> instances, even with multiple domains. It provides <a href=\"https:\/\/jumpcloud.com\/platform\/single-sign-on\" target=\"_blank\" rel=\"noreferrer noopener\">frictionless access<\/a> to resources with support for common networking and web protocols, secured by <a href=\"https:\/\/jumpcloud.com\/platform\/multi-factor-authentication-mfa\" target=\"_blank\" rel=\"noreferrer noopener\">environment-wide MFA<\/a> and <a href=\"https:\/\/jumpcloud.com\/platform\/mdm\" target=\"_blank\" rel=\"noreferrer noopener\">cross-OS device management<\/a>. And <a href=\"https:\/\/jumpcloud.com\/support\/get-started-jumpcloud-go\" target=\"_blank\" rel=\"noreferrer noopener\">JumpCloud Go<\/a>\u2122 provides modern authentication for more than just Windows.\u00a0<\/p>\n\n\n\n<p>The open directory platform is a single pane of glass for managing access to all of your resources with automations and workflows that can increase IT efficiency and get to results faster. Other features and options include:<\/p>\n\n\n\n<ul>\n<li>A password manager<\/li>\n\n\n\n<li>Cross-OS (and browser) patch management<\/li>\n\n\n\n<li>Remote access and troubleshooting tools<\/li>\n<\/ul>\n\n\n\n<p><a href=\"https:\/\/console.jumpcloud.com\/signup\" target=\"_blank\" rel=\"noreferrer noopener\">Sign up for a demo<\/a> and find out if it\u2019s the best option for your organization. You can also get hands-on with <a href=\"https:\/\/university.jumpcloud.com\/pages\/guided-sims\" target=\"_blank\" rel=\"noreferrer noopener\">guided simulations<\/a> to see how the platform works without having to do any work.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"h-general-ldap-faq\">General LDAP FAQ<\/h2>\n\n\n\n<h4 class=\"wp-block-heading\">How does LDAP work with Active Directory?<\/h4>\n\n\n\n<p>LDAP provides a means to manage user and group membership stored in Active Directory. LDAP is a protocol to authenticate and authorize granular access to IT resources, while Active Directory is a database of user and group information.<\/p>\n\n\n\n<h4 class=\"wp-block-heading\">What is LDAP injection?<\/h4>\n\n\n\n<p>LDAP injection can compromise organization-wide directory information, granting unauthorized access. It occurs when a bad actor uses manipulated LDAP code to modify or divulge sensitive user data from LDAP servers. Prevent malicious injections with LDAP filter validation and by checking the LDAP client applications.<\/p>\n\n\n\n<h4 class=\"wp-block-heading\">Where do we use LDAP?<\/h4>\n\n\n\n<p>LDAP is used as an authentication protocol for directory services. We use LDAP to authenticate users to on-prem and web applications, NAS devices, and SAMBA file servers.&nbsp;<\/p>\n\n\n\n<h4 class=\"wp-block-heading\">Is LDAP secure?<\/h4>\n\n\n\n<p>In order to secure communications, LDAP transactions must be encrypted using an SSL\/TLS connection. To set up, use either <a href=\"https:\/\/jumpcloud.com\/blog\/ldap-vs-ldaps\">LDAPS<\/a> on port 636 or StartTLS on the standard LDAP 389 port.&nbsp; You must obtain a valid server authentication certificate (ensure it\u2019s valid for LDAPS).<\/p>\n\n\n\n<h4 class=\"wp-block-heading\">What is the difference between Kerberos and LDAP?<\/h4>\n\n\n\n<p>While both are network protocols used for authentication, <a href=\"https:\/\/jumpcloud.com\/blog\/kerberos-vs-ldap\">Kerberos<\/a> uses symmetric key cryptography and is popular with Microsoft systems while LDAP uses query-based authentication and is popular with on-premise systems. As a directory protocol, LDAP can also store user and group information.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>What is LDAP authentication? In short, it is one of the most common ways for IT admins to control access to applications and more.<\/p>\n","protected":false},"author":150,"featured_media":15122,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"_oasis_is_in_workflow":0,"_oasis_original":0,"_oasis_task_priority":"","inline_featured_image":false,"footnotes":""},"categories":[23,2781],"tags":[2396],"collection":[2779],"platform":[2359],"funnel_stage":[3016],"coauthors":[2535],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO Premium plugin v22.9 (Yoast SEO v22.9) - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>LDAP Authentication: What It Is and How It Works - JumpCloud<\/title>\n<meta name=\"description\" content=\"What is LDAP authentication? In short, it is one of the most common ways for IT admins to control access to applications and more.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/jumpcloud.com\/blog\/what-is-ldap-authentication\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"What Is LDAP Authentication?\" \/>\n<meta property=\"og:description\" content=\"What is LDAP authentication? In short, it is one of the most common ways for IT admins to control access to applications and more.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/jumpcloud.com\/blog\/what-is-ldap-authentication\" \/>\n<meta property=\"og:site_name\" content=\"JumpCloud\" \/>\n<meta property=\"article:published_time\" content=\"2023-02-28T18:54:31+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2024-07-01T13:00:50+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2018\/05\/what-is-ldap-authentication.png\" \/>\n\t<meta property=\"og:image:width\" content=\"1024\" \/>\n\t<meta property=\"og:image:height\" content=\"512\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"author\" content=\"David Worthington\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"David Worthington\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"7 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/jumpcloud.com\/blog\/what-is-ldap-authentication#article\",\"isPartOf\":{\"@id\":\"https:\/\/jumpcloud.com\/blog\/what-is-ldap-authentication\"},\"author\":{\"name\":\"David Worthington\",\"@id\":\"https:\/\/jumpcloud.com\/#\/schema\/person\/185ca12034835ee50ee17b100abdfb2e\"},\"headline\":\"What Is LDAP Authentication?\",\"datePublished\":\"2023-02-28T18:54:31+00:00\",\"dateModified\":\"2024-07-01T13:00:50+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/jumpcloud.com\/blog\/what-is-ldap-authentication\"},\"wordCount\":1395,\"publisher\":{\"@id\":\"https:\/\/jumpcloud.com\/#organization\"},\"image\":{\"@id\":\"https:\/\/jumpcloud.com\/blog\/what-is-ldap-authentication#primaryimage\"},\"thumbnailUrl\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2018\/05\/what-is-ldap-authentication.png\",\"keywords\":[\"LDAP\"],\"articleSection\":[\"Best Practices\",\"How-To\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/jumpcloud.com\/blog\/what-is-ldap-authentication\",\"url\":\"https:\/\/jumpcloud.com\/blog\/what-is-ldap-authentication\",\"name\":\"LDAP Authentication: What It Is and How It Works - JumpCloud\",\"isPartOf\":{\"@id\":\"https:\/\/jumpcloud.com\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/jumpcloud.com\/blog\/what-is-ldap-authentication#primaryimage\"},\"image\":{\"@id\":\"https:\/\/jumpcloud.com\/blog\/what-is-ldap-authentication#primaryimage\"},\"thumbnailUrl\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2018\/05\/what-is-ldap-authentication.png\",\"datePublished\":\"2023-02-28T18:54:31+00:00\",\"dateModified\":\"2024-07-01T13:00:50+00:00\",\"description\":\"What is LDAP authentication? In short, it is one of the most common ways for IT admins to control access to applications and more.\",\"breadcrumb\":{\"@id\":\"https:\/\/jumpcloud.com\/blog\/what-is-ldap-authentication#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/jumpcloud.com\/blog\/what-is-ldap-authentication\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/jumpcloud.com\/blog\/what-is-ldap-authentication#primaryimage\",\"url\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2018\/05\/what-is-ldap-authentication.png\",\"contentUrl\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2018\/05\/what-is-ldap-authentication.png\",\"width\":1024,\"height\":512,\"caption\":\"What is LDAP Authentication\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/jumpcloud.com\/blog\/what-is-ldap-authentication#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/jumpcloud.com\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"What Is LDAP Authentication?\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/jumpcloud.com\/#website\",\"url\":\"https:\/\/jumpcloud.com\/\",\"name\":\"JumpCloud\",\"description\":\"Daily insights on directory services, IAM, LDAP, identity security, SSO, system management (Mac, Windows, Linux), networking, and the cloud.\",\"publisher\":{\"@id\":\"https:\/\/jumpcloud.com\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/jumpcloud.com\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/jumpcloud.com\/#organization\",\"name\":\"JumpCloud\",\"url\":\"https:\/\/jumpcloud.com\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/jumpcloud.com\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/01\/jc-logo-brand-2021.png\",\"contentUrl\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/01\/jc-logo-brand-2021.png\",\"width\":598,\"height\":101,\"caption\":\"JumpCloud\"},\"image\":{\"@id\":\"https:\/\/jumpcloud.com\/#\/schema\/logo\/image\/\"}},{\"@type\":\"Person\",\"@id\":\"https:\/\/jumpcloud.com\/#\/schema\/person\/185ca12034835ee50ee17b100abdfb2e\",\"name\":\"David Worthington\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/jumpcloud.com\/#\/schema\/person\/image\/d9acf1381c6e5b50c0f50d47b7b05411\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/a6dde901b469c9005c22973e42038d62?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/a6dde901b469c9005c22973e42038d62?s=96&d=mm&r=g\",\"caption\":\"David Worthington\"},\"description\":\"I'm the JumpCloud Champion for Product, Security. JumpCloud and Microsoft certified, security analyst, a one-time tech journalist, and former IT director.\",\"sameAs\":[\"https:\/\/jumpcloud.com\/blog\",\"david.worthington@jumpcloud.com\"]}]}<\/script>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"LDAP Authentication: What It Is and How It Works - JumpCloud","description":"What is LDAP authentication? In short, it is one of the most common ways for IT admins to control access to applications and more.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/jumpcloud.com\/blog\/what-is-ldap-authentication","og_locale":"en_US","og_type":"article","og_title":"What Is LDAP Authentication?","og_description":"What is LDAP authentication? In short, it is one of the most common ways for IT admins to control access to applications and more.","og_url":"https:\/\/jumpcloud.com\/blog\/what-is-ldap-authentication","og_site_name":"JumpCloud","article_published_time":"2023-02-28T18:54:31+00:00","article_modified_time":"2024-07-01T13:00:50+00:00","og_image":[{"width":1024,"height":512,"url":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2018\/05\/what-is-ldap-authentication.png","type":"image\/png"}],"author":"David Worthington","twitter_card":"summary_large_image","twitter_misc":{"Written by":"David Worthington","Est. reading time":"7 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/jumpcloud.com\/blog\/what-is-ldap-authentication#article","isPartOf":{"@id":"https:\/\/jumpcloud.com\/blog\/what-is-ldap-authentication"},"author":{"name":"David Worthington","@id":"https:\/\/jumpcloud.com\/#\/schema\/person\/185ca12034835ee50ee17b100abdfb2e"},"headline":"What Is LDAP Authentication?","datePublished":"2023-02-28T18:54:31+00:00","dateModified":"2024-07-01T13:00:50+00:00","mainEntityOfPage":{"@id":"https:\/\/jumpcloud.com\/blog\/what-is-ldap-authentication"},"wordCount":1395,"publisher":{"@id":"https:\/\/jumpcloud.com\/#organization"},"image":{"@id":"https:\/\/jumpcloud.com\/blog\/what-is-ldap-authentication#primaryimage"},"thumbnailUrl":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2018\/05\/what-is-ldap-authentication.png","keywords":["LDAP"],"articleSection":["Best Practices","How-To"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/jumpcloud.com\/blog\/what-is-ldap-authentication","url":"https:\/\/jumpcloud.com\/blog\/what-is-ldap-authentication","name":"LDAP Authentication: What It Is and How It Works - JumpCloud","isPartOf":{"@id":"https:\/\/jumpcloud.com\/#website"},"primaryImageOfPage":{"@id":"https:\/\/jumpcloud.com\/blog\/what-is-ldap-authentication#primaryimage"},"image":{"@id":"https:\/\/jumpcloud.com\/blog\/what-is-ldap-authentication#primaryimage"},"thumbnailUrl":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2018\/05\/what-is-ldap-authentication.png","datePublished":"2023-02-28T18:54:31+00:00","dateModified":"2024-07-01T13:00:50+00:00","description":"What is LDAP authentication? In short, it is one of the most common ways for IT admins to control access to applications and more.","breadcrumb":{"@id":"https:\/\/jumpcloud.com\/blog\/what-is-ldap-authentication#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/jumpcloud.com\/blog\/what-is-ldap-authentication"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/jumpcloud.com\/blog\/what-is-ldap-authentication#primaryimage","url":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2018\/05\/what-is-ldap-authentication.png","contentUrl":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2018\/05\/what-is-ldap-authentication.png","width":1024,"height":512,"caption":"What is LDAP Authentication"},{"@type":"BreadcrumbList","@id":"https:\/\/jumpcloud.com\/blog\/what-is-ldap-authentication#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/jumpcloud.com\/"},{"@type":"ListItem","position":2,"name":"What Is LDAP Authentication?"}]},{"@type":"WebSite","@id":"https:\/\/jumpcloud.com\/#website","url":"https:\/\/jumpcloud.com\/","name":"JumpCloud","description":"Daily insights on directory services, IAM, LDAP, identity security, SSO, system management (Mac, Windows, Linux), networking, and the cloud.","publisher":{"@id":"https:\/\/jumpcloud.com\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/jumpcloud.com\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/jumpcloud.com\/#organization","name":"JumpCloud","url":"https:\/\/jumpcloud.com\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/jumpcloud.com\/#\/schema\/logo\/image\/","url":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/01\/jc-logo-brand-2021.png","contentUrl":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/01\/jc-logo-brand-2021.png","width":598,"height":101,"caption":"JumpCloud"},"image":{"@id":"https:\/\/jumpcloud.com\/#\/schema\/logo\/image\/"}},{"@type":"Person","@id":"https:\/\/jumpcloud.com\/#\/schema\/person\/185ca12034835ee50ee17b100abdfb2e","name":"David Worthington","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/jumpcloud.com\/#\/schema\/person\/image\/d9acf1381c6e5b50c0f50d47b7b05411","url":"https:\/\/secure.gravatar.com\/avatar\/a6dde901b469c9005c22973e42038d62?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/a6dde901b469c9005c22973e42038d62?s=96&d=mm&r=g","caption":"David Worthington"},"description":"I'm the JumpCloud Champion for Product, Security. JumpCloud and Microsoft certified, security analyst, a one-time tech journalist, and former IT director.","sameAs":["https:\/\/jumpcloud.com\/blog","david.worthington@jumpcloud.com"]}]}},"_links":{"self":[{"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/posts\/15121"}],"collection":[{"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/users\/150"}],"replies":[{"embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/comments?post=15121"}],"version-history":[{"count":2,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/posts\/15121\/revisions"}],"predecessor-version":[{"id":112394,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/posts\/15121\/revisions\/112394"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/media\/15122"}],"wp:attachment":[{"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/media?parent=15121"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/categories?post=15121"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/tags?post=15121"},{"taxonomy":"collection","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/collection?post=15121"},{"taxonomy":"platform","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/platform?post=15121"},{"taxonomy":"funnel_stage","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/funnel_stage?post=15121"},{"taxonomy":"author","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/coauthors?post=15121"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}