Janu
ary 201
9
192 Legrand PDU User Guide
Field/setting
Description
Port (TLS)
Configurable only when "TLS" is selected in the Security field.
The default is 636. Either use the default port or specify another one.
Enable verification
of LDAP Server
Certificate
Select this checkbox if it is required to validate the LDAP server's
certificate by the Legrand PDU prior to the connection.
If the certificate validation fails, the connection is refused.
CA Certificate
Consult your AA server administrator to get the CA certificate file for
the LDAPS server.
Click
to select and install the certificate file.
Click Show to view the installed certificate's content.
Click Remove to delete the installed certificate if it is inappropriate.
Note: If the required certificate file is a chain of certificates, and
you are not sure about the requirements of a certificate chain,
see
TLS Certificate Chain
(on page 526).
Allow expired and
not yet valid
certificates
Select this checkbox to make the authentication succeed
regardless of the certificate's validity period.
After deselecting this checkbox, the authentication fails whenever
any certificate in the selected certificate chain is outdated or not
valid yet.
Anonymous Bind
Use this checkbox to enable or disable anonymous bind.
To use anonymous bind, select this checkbox.
When a Bind DN and password are required to bind to the
external LDAP/LDAPS server, deselect this checkbox.
Bind DN
Required after deselecting the Anonymous Bind checkbox.
Distinguished Name (DN) of the user who is permitted to search the
LDAP directory in the defined search base.
Bind Password,
Confirm Bind
Password
Required after deselecting the Anonymous Bind checkbox.
Enter the Bind password.
Base DN for Search Distinguished Name (DN) of the search base, which is the starting
point of the LDAP search.
Example:
ou=dev,dc=example,dc=com
Login Name
Attribute
The attribute of the LDAP user class which denotes the login name.
Usually it is the
uid.
User Entry Object
Class
The object class for user entries.
Usually it is
inetOrgPerson
.
User Search
Subfilter
Search criteria for finding LDAP user objects within the directory tree.