Dell S2815dn Installation And Configuration Manual page 18

Basic
This includes PIN validation, card expiration check, and X.509 card
certificate validation. If an NTP server is not configured on the LAN
Side Configuration page, the expiration check is bypassed. The Basic
level of authentication is always included and cannot be removed
from the configuration. In some installations, this is sufficient
authentication and is the only one activated.
OCSP
Check this box to enable OCSP (Online Certificate Status Protocol)
verification of CAC Cards. If enabled the OCSP server will be used to
validate the current status of the CAC card PKI certificate.
NOTE: If OCSP is enabled, you must have a DNS server configured.
Root Certificate
Check this box to enable Root Certificate verification of CAC Cards. If
enabled, the certificate chain, including the Root CA Certificate will
be used to validate the CAC card PKI certificate. The card is also
checked to be certain the CAC certificate has a valid private key.
NOTE: If Root Certificate is enabled, all Issuer Certificates and Root
CA Certificate chains for cards in use at this installation must be
loaded into the CACStar. If not, Verify Failures will occur.
LDAP
Check this to enable use of the Active Directory server for additional
authentication
LDAP Server IP:
LDAP Server Port:
LDAP Query User Name: User Name for the LDAP service
account login.
CACStar User Guide Rev A27
Copyright 2017 Digital Imaging Technology
IP address of the LDAP server.
Port number of the LDAP server.
The default is 389.
Page 18