Starting today, you can encrypt Lightweight Directory Access Protocol (LDAP) communication between your applications and AWS Directory Service for Microsoft Active Directory, also known as AWS Microsoft AD. Many Windows and Linux applications use LDAP to read and update information about users and devices, including personally identifiable information (PII). Now you can enable LDAP over Secure Sockets Layer (SSL)/Transport Layer Security (TLS), also called LDAPS, to encrypt your LDAP communications end to end. This helps you protect PII and other sensitive information exchanged with AWS Microsoft AD over untrusted networks.