ABC.com has a network that is comprise of a single Active Directory Domain.
As an administrator at ABC.com, you install Active Directory Lightweight Directory Services
(AD LDS) on a server that runs Windows Server 2008. To enable Secure Sockets Layer
(SSL) based connections to the AD LDS server, you install certificates from a trusted
Certification Authority (CA) on the AD LDS server and client computers.
Which tool should you use to test the certificate with AD LDS?

A.
Ldp.exe

B.
Active Directory Domain services

C.
ntdsutil.exe

D.
Lds.exe

E.
wsamain.exe

F.
None of the above

Explanation:
http://technet.microsoft.com/en-us/library/cc725767%28v=ws.10%29.aspx
Appendix A: Configuring LDAP over SSL Requirements for AD LDS
The Lightweight Directory Access Protocol (LDAP) is used to read from and write to Active
Directory
Lightweight Directory Services (AD LDS). By default, LDAP traffic is not transmitted
securely. You can make LDAP traffic confidential and secure by using Secure Sockets Layer
(SSL) / Transport Layer Security (TLS) technology.
Step 3: Connect to the AD LDS instance over LDAPS using Ldp.exe
To test your server authentication certificate, you can open Ldp.exe on the computer that is
running the AD LDS instance and then connect to this AD LDS instance that has the SSL
option enabled.