We just raised a $30M Series A: Read our story

What are the differences between LDAP and Active Directory?


What are pros and cons of each?

ITCS user
33 Answers

author avatar

Without going into too much detail since I'm not an expert in this field myself.

LDAP is a connection protocol and a query creation language, which can for example allow the exchange between several LDAP compatible directories or make queries in these directories, while the AD is a Directory whose role is to keep a set of information, to store data. Moreover, ActiveDirectory is an LDAP directory.

author avatar
Real User

LDAP is a directory services protocol.

Active Directory is a directory server that uses the LDAP protocol. Active Directory is a proprietory directory server built by Microsoft that leverage SASL (Simple Authentication and Security Layer) and Kerberos as an authentification mechanism.

author avatar
Real User

Active Directory is the directory service database to store the organizational-based data, policy, authentication, etc. whereas ldap is the protocol used to talk to the directory service database that is ad or adam. 

LDAP sits on top of the TCP/IP stack and controls internet directory access. It is environment agnostic

Find out what your peers are saying about Microsoft, Okta, SailPoint and others in Identity and Access Management as a Service (IDaaS) (IAMaaS). Updated: November 2021.
552,695 professionals have used our research since 2012.