Below are diagrams of 2 typical deployments of LDAP integration:
In this compact deployment, both the DualShield Authentication Server (DAS) and the DualShield LDAP Broker (DLB) are installed and operating on one single server machine that resides in the corporate network.
In this extended deployment, the DualShield Authentication Server (DAS) is installed on a server machine that resides in the corporate network, and the DualShield LDAP Broker (DLB) is installed on a server machine that resides in the DMZ.
Port | Function | Comment |
---|---|---|
8071 | DualShield authentication | Used by the DualShield Authentication Server to provide authentication service |
8090 | RADIUS management | Used by the DualShield Authentication Server to manage the RADIUS server |
389 | LDAP | Used in communication between the network device and DualShield LDAP broker, as well as between DualShield Authentication Server and AD server |
636 | LDAP | Used in communication between the network device and DualShield LDAP broker, as well as between DualShield Authentication Server and AD server |