With the changes in the IT management tools space, many IT admins have had the thought,
“Can I replace AD with LDAP?” The short answer is no, in most cases. There are some situations where this is possible, but in general, IT admins are better off replacing Active Directory® with a more comprehensive cloud identity management platform.
The changes in IT management tools are really a function of the changes that are underway in the IT space as a whole. With IT organizations transforming their networks to be cloud and web based, it makes sense that the tools that IT admins are using to manage their IT infrastructure are changing as well. Let’s take a look at how these changes have impacted IT’s decision to replace Active Directory.
How Active Directory Hit Rock Bottom
The identity management space is in a state of transformation right now. Historically, Microsoft® Active Directory has been the core identity and access management platform for an organization. This made a lot of sense in the past because the network was all on-prem and Windows® based. In fact, it was a core part of Microsoft’s strategy to stitch together the ability to manage users and systems. Then new resources were introduced that Active Directory wasn’t designed to connect to, and they have only increased in numbers.
The shift to Mac and Linux systems, web applications, new technical applications, and cloud infrastructure from AWS® has created a desire to have one central identity provider that can manage all of these disparate IT resources. IT organizations know that AD is excellent with on-prem, Windows-based networks. Unfortunately, ever since these new, cloud-based, non-Microsoft resources emerged, AD has struggled to provide effective user and system management.
Can You Replace AD With LDAP?
LDAP has been a great open source alternative to Active Directory for many years. In many instances, organizations have leveraged AD and OpenLDAP™ simultaneously. The challenge is that LDAP works well with IT resources that speak LDAP, but if they prefer a different authentication protocol, then LDAP struggles. The result is that you (Read more...)