User guide
Chapter 5: Using the Web Interface
91
Tip: You can also do this by using the Test Connection button in the
Authentication Settings dialog.
19. Click OK to save the changes. The new LDAP server is listed in the
Authentication Settings dialog.
20. To add additional LDAP/LDAPS servers, repeat Steps 3 to 19.
21. Click OK to save the changes. The LDAP authentication is now in
place.
Note: If the Dominion PX clock and the LDAP server clock are out of sync,
the certificates are considered expired and users are unable to
authenticate using LDAP. To ensure proper synchronization,
administrators should configure Dominion PX and the LDAP server to use
the same NTP server.
More Information about AD Configuration
For more information about the LDAP configuration using Microsoft Active
Directory, see LDAP Configuration Illustration (on page 229).
Sorting the LDAP Access Order
The order of the LDAP list determines the access priority of remote
LDAP/LDAPS servers. Dominion PX first tries to access the top
LDAP/LDAPS server in the list for authentication, then the next one if the
access to the first one fails, and so on until the Dominion PX device
successfully connects to one of the listed LDAP/LDAPS servers.
Note: After successfully connecting to one LDAP/LDAPS server,
Dominion PX STOPS trying to access the remaining LDAP/LDAPS
servers in the list regardless of the user authentication result.
To re-sort the LDAP server access list:
1. Choose Device Settings > Security > Authentication. The
Authentication Settings dialog appears.
2. Select the LDAP/LDAPS server whose priority you want to change.
3. Click "Move up" or "Move down" until the selected server reaches the
desired position in the list.
4. Click OK to save the changes.