CHAPTER 5: Configuration
79
The LDAP Parameters Menu allows you to dene the following parameters:
• Enable: Enables/disables LDAP authentication. (Default = Off.)
• Primary Host: Denes the IP address or domain name (up to 64 characters)
for the primary LDAP server. (Default = undened.)
• Secondary Host: Denes the IP address or domain name (up to 64 characters)
for the secondary (fallback) LDAP server. (Default = undened.)
• LDAP Port: Denes the port that will be used to communicate with the LDAP
server. (Default = 389.)
• TLS/SSL: Enables/Disables TLS/SSL encryption. Note that when TLS/SSL
encryption is enabled, the LDAP Port should be set to 636. (Default = Off.)
• Bind Type: Sets the LDAP bind request password type. Note that in the Text
Interface, when the Bind Type is set to "Kerberos," the LDAP menu will include
an additional prompt that is used to select Kerberos parameters. In the Web
Interface, Kerberos parameters are dened using the prompts at the bottom of
the menu. (Default = Simple.)
• Search Bind DN: The username that will be allowed to search the LDAP
directory. (Default = undened.)
• Search Bind Password: The Password for the user who is allowed to search
the LDAP directory. (Default = undened.)
• User Search Base DN: The directory location for user searches.
(Default = undened.)
• User Search Filter: Selects the attribute that lists the user name. Note that this
attribute should always end with "=%S" (no quotes.) (Default = undened.)
• Group Membership Attribute: Selects the attribute that list group
membership(s). (Default = undened.)
• Group Membership Value Type: (Default = DN.)
• Fallback: Enables/Disables the LDAP fallback feature. When enabled,
the Outlet Managed PDU will revert to it’s own internal user directory (see
Section 5.5) if no dened users are found via the LDAP server. In this case,
port access rights will then be granted as specied in the default LDAP group.
(Default = Off.)