new option ldap_tls_verify is added (EJAB-1229)

author: Evgeniy Khramtsov <ekhramtsov@process-one.net> 2010-05-10 19:37:37 +1000
committer: Evgeniy Khramtsov <ekhramtsov@process-one.net> 2010-05-10 19:37:37 +1000
commit: f58d03c12e1160f40a7c38b61b0b6a47a1bc6a1b (patch)
tree: 3efc5d340d385a2660c1c6b69a3445f2d8c46264 /doc
parent: full support for XEP-0115 v1.5 (EJAB-1223) (EJAB-1189) (diff)
1 files changed, 5 insertions, 0 deletions
diff --git a/doc/guide.tex b/doc/guide.tex
index fea9d55e6..bef001c32 100644
--- a/doc/guide.tex
+++ b/doc/guide.tex
@@ -2187,6 +2187,11 @@ Allowed values are: \term{none}, \term{tls}.
 The value \term{tls} enables encryption by using LDAP over SSL.
 Note that STARTTLS encryption is not supported.
 The default value is: \term{none}.
+\titem{\{ldap\_tls\_verify, false|soft|hard\}} \ind{options!ldap\_tls\_verify}
+This option specifies whether to verify LDAP server certificate or not when TLS is enabled.
+When \term{hard} is enabled \ejabberd{} doesn't proceed if a certificate is invalid.
+When \term{soft} is enabled \ejabberd{} proceeds even if check fails.
+The default is \term{false} which means no checks are performed.
 \titem{\{ldap\_port, Number\}} \ind{options!ldap\_port}Port to connect to your LDAP server.
 The default port is~389 if encryption is disabled; and 636 if encryption is enabled.
 If you configure a value, it is stored in \ejabberd{}'s database.
author	Evgeniy Khramtsov <ekhramtsov@process-one.net>	2010-05-10 19:37:37 +1000
committer	Evgeniy Khramtsov <ekhramtsov@process-one.net>	2010-05-10 19:37:37 +1000
commit	f58d03c12e1160f40a7c38b61b0b6a47a1bc6a1b (patch)
tree	3efc5d340d385a2660c1c6b69a3445f2d8c46264 /doc
parent	full support for XEP-0115 v1.5 (EJAB-1223) (EJAB-1189) (diff)