User`s guide
73
LDAP: When selected, user who registered the database of LDAP server specified
can only access the serial port. There are several categories of LDAP authentication
Methods:
− LDAP server: The user authentication performed only through the LDAP server.
− LDAP server - Local: The user authentication performed through the LDAP server
first. If succeeded, user can access the serial port. If failed, user authentication
performed through local database of ConnectPort LTS again.
− Local - LDAP server: The user authentication performed through the local database
of ConnectPort LTS first. If authentication succeeds, user can access the serial port. If
authentication fails, user authentication is performed through the LDAP server again.
− LDAP down - Local: The user authentication performed through the LDAP server
first. If succeeded, user can access the serial port. But if the LDAP server does not
respond to the authentication request from the ConnectPort LTS, user authentication
performed through local database of ConnectPort LTS again. But if the authentication
through the LDAP server is failed, authentication through local database of
ConnectPort LTS is not performed and the user cannot access the serial port.
For LDAP authentication, the following settings are required:
− Primary authentication server: The IP address or DNS name of authentication server.
This option is compulsory to use the remote authentication method. If this server is
down or busy, the authentication query is sent to the secondary server (if it is specified)
− Authentication server socket: The TCP port to use for authentication communication.
The default port number for LDAP authentication is 389. The primary and the
secondary servers are required to use the same TCP port.
− LDAP search base: LDAP search base (the distinguished name of the search base
object) defines the location in the directory from which the LDAP search begins.
− Domain name for active directory: If the LDAP database resides on a Microsoft
system, the Domain name for the active directory must be configured on this option. If
using a non-Microsoft system, do not use this setting, as it changes the LDAP to
comply with Microsoft syntax.
− Secure LDAP: If StartTLS is selected, the StartTLS extended operation is used to
secure the communication between ConnectPort LTS and the LDAP Server.
The following settings are optional:
− Secondary authentication server: The IP address or DNS name of the secondary