CHAPTER 8: USER M ANAGEMENT 85Implementing LDAP Remote AuthenticationLightweight Directory Access Protocol (LDAP) is a networking protocol for querying andmodifying directory services running over TCP/IP. A client starts an LDAP session by connectingto an LDAP server (the default TCP port is 389). The client then sends operation requests to theserver, and the server sends responses in turn.Reminder: Microsoft Active Directory functions natively as an LDAP authentication server.To use the LDAP authentication protocol, input the following information:Figure 53: Authentication Settings (LDAP)1. Type the IP Address or DNS name of your LDAP remote authentication server in thePrimary LDAP Server field. When the Enable Secure LDAP option is checked, the DNSname must be used.2. (Optional) Type the IP Address or DNS name of your backup LDAP server in the SecondaryLDAP Server field. When the Enable Secure LDAP option is checked, the DNS name mustbe used. Please note that the remaining fields share the same settings with the PrimaryLDAP Server field.3. Type the server secret (password) required to authenticate against your remote authenticationserver in the Secret Phrase field and again in the Confirm Secret Phrase field.4. Check the Enable Secure LDAP checkbox if you would like to use SSL; the Secure LDAPPort field is enabled. Secure Sockets Layer (SSL) is a cryptographic protocol which allowsDominion KX II to communicate securely with the LDAP server.5. The default Port is 389. Either use the standard LDAP TCP port or specify another port.6. The default Secure LDAP Port is 636. Either use the default port or specify another port.This field is enabled when the Enable Secure LDAP box is checked.7. Certificate File. Consult your authentication server administrator to get the CA certificatefile in Base64 encoded X-509 format for the LDAP server. Use the Browse button tonavigate to the certificate file. This field is enabled when the Enable Secure LDAP option ischecked.