Doubt: LDAP itself is an identity authentication function. Why is radius still widely used in industrial standards? What is the advantage of radius over LDAP?
Simple 1:
Radius is a dedicated authentication management system. Certification is its strength, and its ability to perform layer-2 certification is its strength.
OpenLDAP is an LDAP server. Authenticated Users are only a small value-added service.
If you want to manage user authentication, such as ADSL user management, radius is not allowed. LDAP is required for unified data. OpenLDAP is optional for authentication.
Answer 2:
LDAP should provide the directory service. User authentication is only used for one aspect, and there are some other applications. It aims to access information by directory nodes. Radius is a specialized authentication protocol that supports a variety of authentication methods. The most common pap, chap, and so on are also supported by EAP (Extended Authentication Protocol), which is not available in LDAP.
I personally think that LDAP is a simplified database, while radius provides a variety of authentication methods.
Start building with 50+ products and up to 12 months usage for Elastic Compute Service
1 on 1 presale consultation
24/7 Technical Support 6 Free Tickets per Quarter Faster Response
Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.
A comprehensive suite of global cloud computing services to power your business
Payment Methods We Support
