Specifies the options that are used for binding to the server. The application can set one or multiple options. This is a list of possible values that can be used along with the description:
Negotiate
The client is authenticated by using either Kerberos or NTLM. When the user name and password are not provided, the Account Management API binds to the object by using the security context of the calling thread, which is either the security context of the user account under which the application is running or of the client user account that the calling thread represents.
Sealing
The data is encrypted by using Kerberos. This flag can only be used with the Negotiate context option and is not available with the simple bind option.
Secure Socket Layer
The channel is encrypted by using the Secure Sockets Layer (SSL). Active Directory requires that the Certificate Services be installed to support SSL.
Server Bind
Specify this flag when you use the domain context type if the application is binding to a specific server name.
Signing
The integrity of the data is verified. This flag can only be used with the Negotiate context option and is not available with the simple bind option.
Simple Bind
The client is authenticated by using the Basic authentication.
CAUTION: Communications may be sent over the Internet in clear text if the Secure Sockets Layer option is not specified with simple bind.
When no context options are specified the default values are Negotiate, Signing, Sealing.
