Role checks are the primary means of performing access control when using LDAP authentication. Both the authentication and attribution capabilities utilize role computation techniques to enumerate the list of roles that both authenticated and non-authenticated users have.
These properties will retrieve correct values automatically based on the type of server you configure, despite having subtly different schemas.