ITS#7897 fix admin guide syncrepl TLS defaults

In 2.4 syncrepl was changed to take its TLS defaults from the slapd
configuration (commit 1cc1f9b) and the man page was updated to document
that (commit 27dd7a5). This updates the admin guide to match.
This commit is contained in:
Ryan Tandy 2014-07-14 09:42:14 -07:00
parent 05b32b4992
commit cd5147703c
2 changed files with 4 additions and 8 deletions

View File

@ -669,10 +669,8 @@ The {{EX:starttls}} parameter specifies use of the StartTLS extended
operation to establish a TLS session before authenticating to the provider. operation to establish a TLS session before authenticating to the provider.
If the {{EX:critical}} argument is supplied, the session will be aborted If the {{EX:critical}} argument is supplied, the session will be aborted
if the StartTLS request fails. Otherwise the syncrepl session continues if the StartTLS request fails. Otherwise the syncrepl session continues
without TLS. Note that the main slapd TLS settings are not used by the without TLS. The tls_reqcert setting defaults to {{EX:"demand"}} and the
syncrepl engine; by default the TLS parameters from a {{ldap.conf}}(5) other TLS settings default to the same as the main slapd TLS settings.
configuration file will be used. TLS settings may be specified here,
in which case any {{ldap.conf}}(5) settings will be completely ignored.
Rather than replicating whole entries, the consumer can query logs Rather than replicating whole entries, the consumer can query logs
of data modifications. This mode of operation is referred to as of data modifications. This mode of operation is referred to as

View File

@ -520,10 +520,8 @@ The {{EX:starttls}} parameter specifies use of the StartTLS extended
operation to establish a TLS session before authenticating to the provider. operation to establish a TLS session before authenticating to the provider.
If the {{EX:critical}} argument is supplied, the session will be aborted If the {{EX:critical}} argument is supplied, the session will be aborted
if the StartTLS request fails. Otherwise the syncrepl session continues if the StartTLS request fails. Otherwise the syncrepl session continues
without TLS. Note that the main slapd TLS settings are not used by the without TLS. The tls_reqcert setting defaults to {{EX:"demand"}} and the
syncrepl engine; by default the TLS parameters from a {{ldap.conf}}(5) other TLS settings default to the same as the main slapd TLS settings.
configuration file will be used. TLS settings may be specified here,
in which case any {{ldap.conf}}(5) settings will be completely ignored.
Rather than replicating whole entries, the consumer can query logs Rather than replicating whole entries, the consumer can query logs
of data modifications. This mode of operation is referred to as of data modifications. This mode of operation is referred to as