Exam XK0-005 topic 1 question 170 discussion

When you query Active Directory you have to speak its language, which is LDAP. I would answer C.

The security gateway connects to the Active Directory Domain Controllers using the Lightweight Directory Access Protocol (LDAP). WMI used for managing and monitoring Windows-based systems rather than querying AD for directory information.

The right answer is A, but if I were to get this question on the exam I would choose C simply because this is a Linux test not a windows test

AD Query is a Windows tool that uses Active Directory's root\directory\ldap namespace. Each LDAP schema class and attribute is mapped to corresponding WMI classes or properties.

It is not C because LDAP is not the protocol that AD Query uses to communicate with the Active Directory Domain Controllers. LDAP stands for Lightweight Directory Access Protocol, and it is a standard way of accessing and managing directory services over a network1. However, AD Query is a Windows-specific tool that uses WMI (Windows Management Instrumentation) as its underlying protocol2. WMI is a framework that allows applications to access and manage information about Windows-based systems3. WMI can use LDAP as one of its data sources, but it is not the same as LDAP itself

When using AD Query, the security gateway connections to the Active Directory Domain Controllers using the Lightweight Directory Access Protocol (LDAP). Explanation: AD Query is a feature of Check Point security gateways that enables administrators to perform queries against Active Directory Domain Controllers. These queries can be used for a variety of purposes, such as user authentication and authorization, group policy enforcement, and other security-related tasks. To perform these queries, the security gateway needs to communicate with the Active Directory Domain Controllers. This communication is typically done using the Lightweight Directory Access Protocol (LDAP), which is a client-server protocol used for accessing directory services. LDAP is a widely used protocol for accessing Active Directory and is used by many different applications and services for authentication, authorization, and other directory-related functions. Therefore, the correct answer is: C. Lightweight Directory Access Protocol (LDAP).

C. Lightweight Directory Access Protocol (LDAP)

In this technology, you make a query for the Active Directory Security Event Logs and extract the user and computer mapping to the network address from them. It works because of Windows Management Instrumentation (WMI), a standard Microsoft protocol. The Identity AwarenessClosed Gateway communicates directly with the Active Directory domain controllers and does not need a special server. https://sc1.checkpoint.com/documents/R81/WebAdminGuides/EN/CP_R81_IdentityAwareness_AdminGuide/Topics-IDAG/Identity-Sources-AD-Query.htm#:~:text=The%20technology%20is%20based%20on,)%2C%20a%20standard%20Microsoft%20protocol.