Directory service

  Describe in your own words, what is a directory service (such as Microsoft Active Directory, Novell, e-Directory, etc.)? Under what circumstances would you recommend its implementation for a client? Why do you think an organization would continue to use directory services that have known security flaws? What is LDAP and what are its security vulnerabilities?