Dell PowerConnect W Clearpass 100 Software 3.7 Deployment Guide - Page 97

 LDAP Server and Port Number - the hostname or IP address of the LDAP server, with the corresponding port number of the LDAP service.  Security - select from one of these options:  Automatic - based on port number - LDAP connections to port 636 are encrypted using TLS, while all other port numbers use an unencrypted LDAP connection.  Use Start TLS operation to upgrade to a secure connection - this option, when it is supported by the LDAP server, allows a standard LDAP connection on port 389 to be upgraded to a connection supporting TLS.  Use TLS to connect securely - enforce a TLS connection regardless of the port number, and never perform unencrypted LDAP.  Certificate Check - displayed when one of the TLS security options is selected. See "Managing Certificates for External Authentication Servers" in this chapter for information about installing digital certificates for external authentication servers. The certificate verification options that may be selected are:  Do not request or verify the server's certificate - perform no verification of the server's identity.  Request the server's certificate but do not verify it - check the server's identity, but do not fail authentications if the server's identity cannot be verified.  Require a valid server certificate (recommended) - check the server's identity, and fail authentications if the server's identity cannot be verified.  Bind Identity and Bind Password - credentials used to bind to the directory.  Base DN - the LDAP distinguished name of the root of the search tree. This is typically a user's container within the directory, but may be different depending on the directory's schema.  Username Attribute - the LDAP attribute that corresponds to the username. A filter expression is built that matches the value of the RADIUS Access-Request's User-Name attribute with this attribute value in the directory. Amigopod 3.7 | Deployment Guide RADIUS Services | 97