1.轻型目录访问协议(LDAP):
LDAP代表轻型目录访问协议。它是一种协议,用于在网络中查找任何人以查找个人,组织和其他设备,而不管其位于公共Internet还是公司Internet上。它用作目录即服务,是Microsoft建立活动目录的基础。
LDAP的功能:
- 它实现了具有灵活体系结构的开源协议。
- 直接通过TCP / IP和SSL操作。
- LDAP是一种自动协议。
- 提供跨行业的广泛支持。
2.远程身份验证拨入用户服务(RADIUS):
RADIUS代表“远程身份验证拨入用户服务”。它是一种网络协议,可为使用和网络服务的用户提供足够的集中式身份验证,计费和授权。当用户请求访问网络资源时,协议开始工作,其中RADIUS服务器对用户输入的凭据进行加密。此后,将通过本地数据库映射凭据,此后,如果所有检查都为真,则授予用户访问权限。
RADIUS的功能:
- 它的服务器可以充当其他Radius服务器的代理客户端。
- 客户端和服务器之间的通信由共享密钥验证。
- 它支持PPP,PAP和CHAP协议以进行身份验证。
- 它使用UDP运行,并且是无状态协议。
LDAP和RADIUS之间的区别:
| S.No. | LDAP | RADIUS |
|---|---|---|
| 1. | It is short called as Lightweight Directory Access Protocol. | It is short used for Remote Authentication Dial-In User Service. |
| 2. | LDAP is used for authorizing the details of the records when accessed. | It is used for centralized Authentication, Accounting, and Authorization for the user’s information. |
| 3. | It is not open-source but it possesses implementation such as Open LDAP which are open-source. | It is not open-source but it possesses implementation such as Free RADIUS which is open-source. |
| 4. | It supports two-factor authentication with RADIUS protocol. | It does not provide two-way authentication, but can set two levels of privileges. |
| 5. | LDAP appends authentication in two options SASL or anonymous authentication. | RADIUS provides authentication by RADIUS client also called NAS. |
| 6. | It renders authentication in multi-tier applications. | It provides authentication in multi-tier applications. |