ldap协议端口号_什么是LDAP协议端口号？ 比较LDAP端口389和636 有大用 有大大用

ldap协议端口号

Lightweight Directory Access Protocol or LDAP is used to authenticate and authorize users. LDAP is used in different infrastructures like Windows Domain, Linux, Network, etc. LDAP uses different port numbers like 389 and 636. LDAP is used by different software like OpenLDAP, Microsoft Active Directory, Netscape Directory Server, Novell eDirectory, etc. LDAP is developed to access the X.500 databases which store information about different users, groups, and entities.

轻型目录访问协议或LDAP用于认证和授权用户。 LDAP用于不同的基础结构(例如Windows域，Linux，网络等)中。LDAP使用不同的端口号(例如389和636)。LDAP被不同的软件(例如OpenLDAP，Microsoft Active Directory，Netscape Directory Server，Novell eDirectory等)使用。开发用于访问X.500数据库，该数据库存储有关不同用户，组和实体的信息。

LDAP的TCP和UDP 389 (TCP and UDP 389 For LDAP)

The well-known port for LDAP is TCP 389. Both UDP and TCP transmission can be used for this port. We can use this port for unsecured and unencrypted LDAP transmission. This means if the LDAP traffic for port 389 is sniffed it can create security problems and expose information like username, password, hash, certificates, and other critical information.

LDAP的众所周知的端口是TCP389。UDP和TCP传输都可以用于此端口。 我们可以使用此端口进行不安全和未加密的LDAP传输。 这意味着，如果嗅探端口389的LDAP通信，则可能造成安全问题，并暴露诸如用户名，密码，哈希，证书和其他重要信息之类的信息。

The port of LDAP TCP and UDP 389 is assigned by the IANA which is an international standardization institution. We can see below the registration information and contact for the port registration.

LDAP TCP和UDP 389的端口是由国际标准化组织IANA分配的。 我们可以在下面看到注册信息并联系端口注册。

TCP和UDP 636安全或SSL LDAP (TCP and UDP 636 Secure or SSL LDAP)

Security is an important part of the network protocols. LDAP is not a secure protocol if we do not implement extra security measures. LDAPS is a secure version of the LDAP where LDAP communication is transmitted over an SSL tunnel. Also, TCP and UDP 636 can be used for LDAPS secure transmission. Even the attacker can sniff the port 636 traffic no information will be exposed to the attacker.

安全性是网络协议的重要组成部分。 如果我们不执行额外的安全措施，则LDAP不是安全协议。 LDAPS是LDAP的安全版本，其中LDAP通信通过SSL隧道传输。 另外，TCP和UDP 636可以用于LDAPS安全传输。 即使攻击者也可以嗅探端口636流量，也不会向攻击者公开任何信息。

连接Active Directory域控制器的LDAP端口 (Connect LDAP Port Of The Active Directory Domain Controller)

Microsoft Active Directory provides LDAP services and LDAP port. The AD port 636 port connection can be configured like below.

Microsoft Active Directory提供LDAP服务和LDAP端口。 AD端口636端口连接可以如下配置。

• Server is the IP address or domain name of the LDAP or AD server.

  
  

  服务器是LDAP或AD服务器的IP地址或域名。

• Port is the port number of the LDAP which is by default 636 in this example.

  
  

  端口是LDAP的端口号，在此示例中默认为636。

• Connectionless will enable the UDP port where the default is TCP.

  
  

  Connectionless将启用默认为TCP的UDP端口。

• SSL will try to connect in a secure way with the SSL/TLS encryption.

  
  

  SSL将尝试以SSL / TLS加密的安全方式进行连接。

辅助LDAP端口(Auxilary LDAP Ports)

There are also some auxilary ports related with the LDAP for administration, control catolog exchange etc.

还有一些与LDAP相关的辅助端口，用于管理，控制目录交换等。

• TCP and UDP 1760 are used for the Ldap gateway port for redirection.

  
  

  TCP和UDP 1760用于Ldap网关端口进行重定向。

• TCP and UDP 3269 are used for Microsoft Global Catalog with LDAP/SSL.

  
  

  TCP和UDP 3269用于带有LDAP / SSL的Microsoft全球目录。

• TCP and UDP 3407 are used for LDAP Admin Server Port.

  
  

  TCP和UDP 3407用于LDAP管理服务器端口。

• TCP and UDP 6301 are used for BMC LDAP Control port.

  
  

  TCP和UDP 6301用于BMC LDAP控制端口。

翻译自: https://www.poftut.com/what-is-ldap-protocol-port-number-compare-ldap-ports-389-vs-636/

ldap协议端口号