From f58d03c12e1160f40a7c38b61b0b6a47a1bc6a1b Mon Sep 17 00:00:00 2001
From: Evgeniy Khramtsov <ekhramtsov@process-one.net>
Date: Mon, 10 May 2010 19:37:37 +1000
Subject: new option ldap_tls_verify is added (EJAB-1229)

---
 doc/guide.tex | 5 +++++
 1 file changed, 5 insertions(+)

(limited to 'doc')

diff --git a/doc/guide.tex b/doc/guide.tex
index fea9d55e6..bef001c32 100644
--- a/doc/guide.tex
+++ b/doc/guide.tex
@@ -2187,6 +2187,11 @@ Allowed values are: \term{none}, \term{tls}.
 The value \term{tls} enables encryption by using LDAP over SSL.
 Note that STARTTLS encryption is not supported.
 The default value is: \term{none}.
+\titem{\{ldap\_tls\_verify, false|soft|hard\}} \ind{options!ldap\_tls\_verify}
+This option specifies whether to verify LDAP server certificate or not when TLS is enabled.
+When \term{hard} is enabled \ejabberd{} doesn't proceed if a certificate is invalid.
+When \term{soft} is enabled \ejabberd{} proceeds even if check fails.
+The default is \term{false} which means no checks are performed.
 \titem{\{ldap\_port, Number\}} \ind{options!ldap\_port}Port to connect to your LDAP server.
 The default port is~389 if encryption is disabled; and 636 if encryption is enabled.
 If you configure a value, it is stored in \ejabberd{}'s database.
-- 
cgit v1.2.3