To understand how LDAPS (LDAP over SSL) works in ADManager Plus, it is essential to understand the key terminologies in the process. The following section breaks down the key terminologies involved in enabling LDAPS in ADManager Plus.
These settings allow you to specify HTTP/HTTPS as the desired mode for for communication between the ADManager Plus web-client and the server. HTTP will be the default mode used. You can also specify the TLS version and Ciphers that you wish to use.
Furthermore, if needed, you can choose to enable LDAPS for communication between the product and Active Directory (AD), and TLS.
Lightweight Directory Access Protocol (LDAP) is a protocol commonly used to access and manage information directories. For your Active Directory to function properly, LDAP serves as a protocol to query, maintain, and authenticate access. ADManager Plus supports an extensive list of LDAP attributes that are listed in this article.
In Active Directory, LDAP traffic between client and server is not encrypted by default. You can change this and employ LDAP over SSL (LDAPS) to secure information exchange between LDAP clients and LDAP servers.
For further information on why you have to consider enabling LDAPS and how to configure LDAPS in Active Directory, refer to this Microsoft article.
In ADManager Plus, you have the option of enabling LDAP SSL to secure communication with the Active Directory. Ensure that LDAP SSL has been enabled in your AD instance before enabling LDAP SSL in ADManager Plus.
When this option is enabled, ADManager Plus will try and establish LDAP SSL connection with Active Directory to perform the desired operations from the product. In case the LDAP SSL connection is unsuccessful, then ADManager Plus will establish an LDAP connection with AD and then proceed to execute the operations.