LDAP is the COBOL of the identity layer..

Dave Kearns nailed it on this one. It's the best description of LDAP I've heard. http://www.networkworld.com/newsletters/dir/2008/050508id2.html?nlhtident=ts_050708&nladname=050708security:identitymanagemental