Which protocol is commonly used to secure LDAP traffic?

The commonly used protocol to secure LDAP traffic is LDAPS, which stands for LDAP over SSL. This protocol enhances the standard LDAP (Lightweight Directory Access Protocol) by encapsulating it within a secure SSL/TLS layer. This is essential because, by default, LDAP transmits data in plaintext, making it susceptible to interception and eavesdropping.

When LDAPS is implemented, the communication between the LDAP client and the server is encrypted, ensuring that sensitive data such as usernames, passwords, and other directory information remains confidential and secure from unauthorized access.

In contrast, FTP is primarily focused on file transfers and does not cater to securing LDAP communications. HTTP is used for web traffic and would not inherently secure LDAP data. SSH is a protocol for secure terminal access and file transfers over insecure networks but is not applicable for securing LDAP specifically. Hence, LDAPS is the appropriate choice for ensuring secure LDAP traffic.