Ldp Remarks

Applies To: Windows Server 2003, Windows Server 2003 R2, Windows Server 2003 with SP1, Windows Server 2003 with SP2

LDP Remarks

Finding Required and Optional Values for an Attribute

The schema defines objects as well as the attributes and permissible values for each. Schema classes that contain attribute information about objects can be viewed. To view this information, search cn=Schema,cn=Configuration,dc=ForestRootDomain for classSchema objects.

Understanding Bind Options for LDAP Authentication

There are several authentication methods available in LDP that allow a client to bind to an LDAP server. The best method depends on several factors.

Method Description


Cleartext password. Try not to use this, as it is not secure.


MSN (Microsoft Network) authentication. This package brings up a dialog box to prompt the user for MSN credentials.


Normandy authentication, new MSN authentication. Same usage as MSN.


Windows NT domain authentication. Use NULL credentials and attempt to use default logged-in user credentials.


Negotiate with the server for any of: MSN, DPA, NTLM. Should be used for LDAPv2 servers only.


Use GSSAPI Negotiate package to negotiate security package of either Kerberos V5 or NTLM (or any other package the client and server negotiate). Pass in NULL credentials to specify default logged-in user. If Negotiate package is not installed on server or client, this will fall back to Sicily negotiation.

See Also


Ldp Overview
Ldp UI
Ldp Examples
Alphabetical List of Tools
Search Overview
Replmon Overview
Repadmin Overview
Dsastat Overview
Clonepr Overview
ADSI Edit (adsiedit.msc)
Acldiag Overview