ITS#3293 add description of syncrepl starttls keyword

author Howard Chu <hyc@openldap.org>

Wed, 19 Jan 2005 09:47:46 +0000 (09:47 +0000)

committer Howard Chu <hyc@openldap.org>

Wed, 19 Jan 2005 09:47:46 +0000 (09:47 +0000)
author Howard Chu <hyc@openldap.org>
Wed, 19 Jan 2005 09:47:46 +0000 (09:47 +0000)
committer Howard Chu <hyc@openldap.org>
Wed, 19 Jan 2005 09:47:46 +0000 (09:47 +0000)
diff --git a/doc/man/man5/slapd.conf.5 b/doc/man/man5/slapd.conf.5

index 1a005a1715856c211cb44e7e03816431f63356f7..617b6e902e846bd8bfdc579aadf7d9411daa4e26 100644 (file)
--- a/doc/man/man5/slapd.conf.5
+++ b/doc/man/man5/slapd.conf.5
@@ -1410,6 +1410,7 @@ with the inner suffix must come first in the configuration file.
  .B [sizelimit=<limit>]
  .B [timelimit=<limit>]
  .B [schemachecking=on|off]
+.B [starttls=yes|critical]
  .B [bindmethod=simple|sasl]
  .B [binddn=<dn>]
  .B [saslmech=<mech>]
@@ -1484,6 +1485,13 @@ The schema checking can be enforced at the LDAP Sync
  consumer site by turning on the
  .B schemachecking
  parameter. The default is off.
+The
+.B starttls
+parameter may be used to specify use of the StartTLS extended operation
+to establish a TLS session before Binding to the provider. If the
+.B critical
+argument is supplied, the session will be aborted if the StartTLS request
+fails. Otherwise the syncrepl session continues in the clear.
  A
  .B bindmethod
  of
author	Howard Chu <hyc@openldap.org>
	Wed, 19 Jan 2005 09:47:46 +0000 (09:47 +0000)
committer	Howard Chu <hyc@openldap.org>
	Wed, 19 Jan 2005 09:47:46 +0000 (09:47 +0000)