Aruba Networks PowerConnect W Clearpass 100 Software Deployment Manual page 97

LDAP Server and Port Number – the hostname or IP address of the LDAP server, with the

corresponding port number of the LDAP service.
Security – select from one of these options:

Automatic – based on port number – LDAP connections to port 636 are encrypted using TLS,

while all other port numbers use an unencrypted LDAP connection.
Use Start TLS operation to upgrade to a secure connection – this option, when it is supported

by the LDAP server, allows a standard LDAP connection on port 389 to be upgraded to a connection
supporting TLS.
Use TLS to connect securely – enforce a TLS connection regardless of the port number, and never

perform unencrypted LDAP.
Certificate Check – displayed when one of the TLS security options is selected. See

Certificates for External Authentication Servers"
certificates for external authentication servers. The certificate verification options that may be selected
are:
Do not request or verify the server's certificate – perform no verification of the server's

identity.
Request the server's certificate but do not verify it – check the server's identity, but do not fail

authentications if the server's identity cannot be verified.
Require a valid server certificate (recommended) – check the server's identity, and fail

authentications if the server's identity cannot be verified.
Bind Identity and Bind Password – credentials used to bind to the directory.

Base DN – the LDAP distinguished name of the root of the search tree. This is typically a user's

container within the directory, but may be different depending on the directory's schema.
Username Attribute – the LDAP attribute that corresponds to the username. A filter expression is

built that matches the value of the RADIUS Access-Request's User-Name attribute with this attribute
value in the directory.
Amigopod 3.7 | Deployment Guide
in this chapter for information about installing digital
"Managing
RADIUS Services | 97