From: Debian OpenLDAP Maintainers Date: Fri, 30 Oct 2020 01:36:26 +0000 (+0000) Subject: ldap-conf-tls-cacertdir X-Git-Tag: archive/raspbian/2.4.47+dfsg-3+rpi1+deb10u3^2~17 X-Git-Url: https://dgit.raspbian.org/%22http://www.example.com/cgi/%22/%22http:/www.example.com/cgi/%22?a=commitdiff_plain;h=97d616ee5a99ab44fea8556ac422119738fc3dc3;p=openldap.git ldap-conf-tls-cacertdir Gbp-Pq: Name ldap-conf-tls-cacertdir --- diff --git a/doc/man/man5/ldap.conf.5 b/doc/man/man5/ldap.conf.5 index 8c67bc0a..d15a8e13 100644 --- a/doc/man/man5/ldap.conf.5 +++ b/doc/man/man5/ldap.conf.5 @@ -318,7 +318,7 @@ certificates in separate individual files. The .B TLS_CACERT is always used before .B TLS_CACERTDIR. -This parameter is ignored with GnuTLS. +This parameter is ignored with GnuTLS. On Debian openldap is linked against GnuTLS. When using Mozilla NSS, may contain a Mozilla NSS cert/key database. If contains a Mozilla NSS cert/key database and @@ -429,7 +429,7 @@ This parameter is ignored with GnuTLS. Specifies the file to obtain random bits from when /dev/[u]random is not available. Generally set to the name of the EGD/PRNGD socket. The environment variable RANDFILE can also be used to specify the filename. -This parameter is ignored with GnuTLS and Mozilla NSS. +This parameter is ignored with GnuTLS and Mozilla NSS. On Debian openldap is linked against GnuTLS. .TP .B TLS_REQCERT Specifies what checks to perform on server certificates in a TLS session, @@ -462,7 +462,7 @@ Specifies if the Certificate Revocation List (CRL) of the CA should be used to verify if the server certificates have not been revoked. This requires .B TLS_CACERTDIR -parameter to be set. This parameter is ignored with GnuTLS and Mozilla NSS. +parameter to be set. This parameter is ignored with GnuTLS and Mozilla NSS. On Debian openldap is linked against GnuTLS. .B can be specified as one of the following keywords: .RS