2004-04-07 14:15:11 +04:00
<samba:parameter name= "ldap ssl"
context="G"
type="enum"
advanced="1" developer="1"
2005-03-13 01:41:20 +03:00
xmlns:samba="http://www.samba.org/samba/DTD/samba-doc">
2004-04-07 14:15:11 +04:00
<description >
<para > This option is used to define whether or not Samba should
use SSL when connecting to the ldap server
This is <emphasis > NOT</emphasis> related to
Samba's previous SSL support which was enabled by specifying the
2007-04-16 11:47:27 +04:00
<command moreinfo= "none" > --with-ssl</command> option to the <filename moreinfo= "none" > configure</filename>
2004-04-07 14:15:11 +04:00
script.</para>
2005-07-05 01:36:46 +04:00
<para > The <smbconfoption name= "ldap ssl" /> can be set to one of three values:</para>
2004-04-07 14:15:11 +04:00
<itemizedlist >
<listitem >
<para > <parameter moreinfo= "none" > Off</parameter> = Never
use SSL when querying the directory.</para>
</listitem>
<listitem >
<para > <parameter moreinfo= "none" > Start_tls</parameter> = Use
the LDAPv3 StartTLS extended operation (RFC2830) for
communicating with the directory server.</para>
</listitem>
<listitem >
<para > <parameter moreinfo= "none" > On</parameter> = Use SSL
on the ldaps port when contacting the <parameter
moreinfo="none">ldap server</parameter> . Only available when the
backwards-compatiblity <command
moreinfo="none">--with-ldapsam</command> option is specified
2007-04-16 11:47:27 +04:00
to configure. See <smbconfoption name= "passdb backend" /> </para> .
2004-04-07 14:15:11 +04:00
</listitem>
</itemizedlist>
</description>
<value type= "default" > start_tls</value>
</samba:parameter>
