LDAP Technology

LDAP is a client-server protocol for accessing a directory service. It was initially used as a front-end to X.500, but can also be used with stand-alone and other kinds of directory servers

An LDAP directory is organized in a simple "tree" hierarchy consisting of the following levels: The "root" directory (the starting place or the source of the tree), wich branches out to Countries, each of wich branches out to Organizations, wich brach out to Organizational units (divisions, departments and so forth), wich branches out to (includes an entry for) Individuals (wich includes people, files, and shared resources such as printers)

An LDAP directory can be distributed among many servers. Each server can have a replicated version of the total directory that is synchronized periodically. An LDAP server is called a Directory System Agent (DSA). An LDAP server that receives a request from a user takes responsibility for the request, passing it to other DSAs as necessary, but ensuring a single coordinated response for the user.