Can LDAP be used when LDAPS is enabled?

Posted on 2014-08-21
Last Modified: 2014-08-21
When LDAPS is enabled, can LDAP (non secure) connections still be made to the system?
Question by:MortgageCenter
    LVL 12

    Expert Comment

    by:David Paris Vicente
    If you have LDAPS in place all queries against the database will need to be Authenticated, if they are not Authenticated the queries will failed.

    Author Comment


    So, no LDAP (non secure) queries can be made once LDAPS is enabled?
    LVL 11

    Expert Comment

    As far as I know, LDAP (non-secure) connections can still be made if LDAPS is enabled.
    LDAP is using port 389 and port 3268 for global catalog servers.
    LDAPS is using port 636 and port 3269 for global catalog servers.
    LVL 12

    Accepted Solution


    LDAP (Lightweight Directory Application Protocol) and Secure LDAP (LDAPS) is the connection protocol used between application and the Network Directory or Domain Controller within the infrastructure.  

    Note, LDAP transmits communications in Clear Text, and LDAPS communication is encrypted and secure.

    For a better understanding about LDAP and LDAPS check the following links:
    Implementing LDAPS (LDAP over SSL)

    Lightweight Directory Access Protocol

    But answering to your question all queries need to be authenticated for both LDAP queries and LDAPS
    the difference will be that non secure queries will pass the authentication in a clear text and in the LDAPS all communications will be encrypted.

    you can make tests by using the ldp.exe.

    I hope this helps.

    Featured Post

    Looking for New Ways to Advertise?

    Engage with tech pros in our community with native advertising, as a Vendor Expert, and more.

    Join & Write a Comment

    Suggested Solutions

    Mapping Drives using Group policy preferences Are you still using old scripts to map your network drives if so this article will show you how to get away for old scripts and move toward Group Policy Preference for mapping them. First things f…
    Synchronize a new Active Directory domain with an existing Office 365 tenant
    This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…
    This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…

    746 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    16 Experts available now in Live!

    Get 1:1 Help Now