LDAP supports access to the following eDirectory features:
Authentication: LDAP authentication includes anonymous binds, clear text binds, SSL and SASL binds. For eDirectory, these LDAP authentication methods mean the following:
An anonymous bind is an unauthenticated connection with [Public] access to the directory.
A clear text bind is an authentication over an unencrypted channel. The client sends a user name and a clear-text password. The LDAP server must be configured to accept unencrypted passwords.
An SSL bind is an authentication over an encrypted channel. All data, including the password, is encrypted. eDirectory clients have access to SSL binds only through LDAP.
Adding, modifying, and deleting entries and attributes in the directory.
Reading, sorting, and searching entries and attributes in the directory.
Reading schema definitions (object classes and attributes).
Adding and deleting schema definitions (object classes and attributes). The LDAP server in NDS eDirectory 8.5 supports the modifying of class definitions and attribute definitions as long as the modifications increase functionality rather than restrict it.
The LDAP protocol does not yet support access to replication, partition, and synchronization services. These services require LDAP extensions that have been developed for NDS eDirectory 8.5 (for more information, see Section 1.6, LDAP Extensions).