LDAPS

LDAP can now be enabled over Secure Sockets Layer (SSL) / Transport Layer Security (TLS) - also known as LDAPS. Enabling LDAPS is done when adding an LDAP Server as shown in the figure below.

Edit LDAP server dialog

Selecting SSL will cause communication to be encrypted by SSL from the start of the connection on the dedicated LDAPS port (by default 636). Selecting TLS will start communication normally on the standard LDAP port (by default 389), and then security is switched to use SSL prior to logging in.