Partager via


LDAP Security Model (Windows Embedded CE 6.0)

1/6/2010

LDAP 3.0 supports various security mechanisms for authenticating to an LDAP server. Windows Embedded CE supports the following security methods that can be used for authentication: Cleartext passwords, and Windows NT® LAN Manager (NTLM) and Negotiate. The Negotiate security package selects between Kerberos and NTLM. The Negotiate security package selects Kerberos unless it cannot be used by one of the systems involved in the authentication.

The bind operation identifies the person (or device or application) that is trying to connect to the server by providing a distinguished name and some type of authentication credential, such as a password. The exact credentials depend on the authentication method being used. The ldap_simple_bind functions use a cleartext password for authentication. Call the ldap_bind or ldap_bind_s function to use authentication services, such as NTLM. Note that ldap_bind is not supported for Negotiate.

See Also

Concepts

LDAP Directory Service

Other Resources

LDAP Application Development