Chapter 6: User Management108Implementing LDAP/LDAPS Remote AuthenticationLightweight Directory Access Protocol (LDAP/LDAPS) is a networkingprotocol for querying and modifying directory services running overTCP/IP. A client starts an LDAP session by connecting to anLDAP/LDAPS server (the default TCP port is 389). The client then sendsoperation requests to the server, and the server sends responses in turn.Reminder: Microsoft Active Directory functions natively as anLDAP/LDAPS authentication server.To use the LDAP authentication protocol, enter the followinginformation:1. Click User Management > Authentication Settings to open theAuthentication Settings page.2. Select the LDAP radio button to enable the LDAP section of thepage.3. Click the icon to expand the LDAP section of the page.4. In the Primary LDAP Server field, type the IP address or DNS nameof your LDAP/LDAPS remote authentication server (up to 37characters). When the Enable Secure LDAP option is selected, theDNS name must be used.5. In the Secondary LDAP Server field, type the IP address or DNSname of your backup LDAP/LDAPS server (up to 37 characters).When the Enable Secure LDAP option is selected, the DNS namemust be used. Note that the remaining fields share the same settingswith the Primary LDAP Server field. Optional6. In the Secret Phrase field and again in the Confirm Secret Phrasefield, type the server secret (password) required to authenticateagainst your remote authentication server (up to 45 characters).Enter the password in use on the LDAP/LDAPS server.7. In the Dialback Query String field, type the dialback query string. Ifyou are using Microsoft Active Directory, you must enter thefollowing string: msRADIUSCallbackNumberNote: This string is case sensitive.8. Select the Enable Secure LDAP checkbox if you would like to useSSL. This will enable the Secure LDAP Port field. Secure SocketsLayer (SSL) is a cryptographic protocol that allows Dominion KX II tocommunicate securely with the LDAP/LDAPS server.9. The default Port is 389. Either use the standard LDAP TCP port orspecify another port.