312-50V13 · Question #288
312-50V13 Question #288: Real Exam Question with Answer & Explanation
The correct answer is D: NTLM. NTLM (NT LAN Manager) is an authentication protocol that can be used to secure LDAP services by requiring users to authenticate with valid credentials before querying the directory, effectively preventing anonymous access. NTLM challenges the client to prove its identity using a
Question
which of the following protocols can be used to secure an LDAP service against anonymous queries?
Options
- ASSO
- BRADIUS
- CWPA
- DNTLM
Explanation
NTLM (NT LAN Manager) is an authentication protocol that can be used to secure LDAP services by requiring users to authenticate with valid credentials before querying the directory, effectively preventing anonymous access. NTLM challenges the client to prove its identity using a challenge-response mechanism tied to Windows credentials, making it a practical choice for securing LDAP in Windows environments.
Why the distractors are wrong:
- SSO (Single Sign-On) is a concept/framework for accessing multiple services with one login, not a protocol that directly secures LDAP against anonymous queries.
- RADIUS is an authentication protocol primarily used for network access (e.g., VPNs, Wi-Fi), not for securing directory services like LDAP.
- WPA (Wi-Fi Protected Access) is a wireless network encryption standard - it has nothing to do with LDAP or directory service authentication.
Memory Tip: Think of NTLM as the "No Trespassing Lock for Microsoft" - it's a Microsoft-native authentication protocol that enforces identity verification, making it a natural fit for securing Windows-integrated LDAP services against unauthorized or anonymous access.
Topics
Community Discussion
No community discussion yet for this question.