Clarify some of the SSL/TLS details as used by the mod_ldap module.

author Graham Leggett <minfrin@apache.org>

Sun, 23 Jan 2005 14:10:33 +0000 (14:10 +0000)

committer Graham Leggett <minfrin@apache.org>

Sun, 23 Jan 2005 14:10:33 +0000 (14:10 +0000)
author Graham Leggett <minfrin@apache.org>
Sun, 23 Jan 2005 14:10:33 +0000 (14:10 +0000)
committer Graham Leggett <minfrin@apache.org>
Sun, 23 Jan 2005 14:10:33 +0000 (14:10 +0000)
diff --git a/docs/manual/mod/mod_ldap.xml b/docs/manual/mod/mod_ldap.xml

index 21db7b0e058c70d5f83a7ad73d2092f8655de016..fa74cfc8e89cb05b148320051d107172889a3e3b 100644 (file)
--- a/docs/manual/mod/mod_ldap.xml
+++ b/docs/manual/mod/mod_ldap.xml
@@ -25,7 +25,7 @@
  <name>mod_ldap</name>
  <description>LDAP connection pooling and result caching services for use
  by other LDAP modules</description>
-<status>Experimental</status>
+<status>Extension</status>
  <sourcefile>util_ldap.c</sourcefile>
  <identifier>ldap_module</identifier>
  <compatibility>Available in version 2.0.41 and later</compatibility>
@@ -42,11 +42,16 @@ by other LDAP modules</description>
      flag to the <program>configure</program> script when building
      Apache.</p>
  
-    <p>SSL support requires that <module>mod_ldap</module> be linked
-    with one of the following LDAP SDKs: <a href="http://www.openldap.org/">
-    OpenLDAP SDK</a> (both 1.x and 2.x), <a href="http://developer.novell.com/ndk/cldap.htm">
-    Novell LDAP SDK</a>, native Solaris LDAP SDK, native Microsoft LDAP SDK, or the <a href="http://www.iplanet.com/downloads/developer/">
-    iPlanet(Netscape)</a> SDK.</p>
+    <p>SSL/TLS support is dependant on which LDAP toolkit has been
+    linked to APR. As of this writing, APR-util supports:
+    <a href="http://www.openldap.org/">OpenLDAP SDK</a> (2.x or later),
+    <a href="http://developer.novell.com/ndk/cldap.htm">Novell LDAP
+    SDK</a>, <a href="http://www.mozilla.org/directory/csdk.html">
+    Mozilla LDAP SDK</a>, native Solaris LDAP SDK (Mozilla based),
+    native Microsoft LDAP SDK, or the
+    <a href="http://www.iplanet.com/downloads/developer/">iPlanet
+    (Netscape)</a> SDK. See the <a href="http://apr.apache.org">APR</a>
+    website for details.</p>
  
  </summary>
  
@@ -299,12 +304,12 @@ by other LDAP modules</description>
          <p>Note: Client certificates are specified globally rather than per
          connection, and so must be specified with the LDAPTrustedGlobalCert
          directive as below. Trying to set client certificates via the
-        LDAPTrustedClientCert directive will cause an error to be thrown
-        when httpd starts up.</p>
+        LDAPTrustedClientCert directive will cause an error to be logged
+        when an attempt is made to connect to the LDAP server..</p>
  
          <p>The SDK supports both SSL and STARTTLS, set using the
          LDAPTrustedMode parameter. If an ldaps:// URL is specified,
-        SSL mode is forced.</p>
+        SSL mode is forced, override this directive.</p>
  
          <example>
               # Specify two CA certificate files<br />
author	Graham Leggett <minfrin@apache.org>
	Sun, 23 Jan 2005 14:10:33 +0000 (14:10 +0000)
committer	Graham Leggett <minfrin@apache.org>
	Sun, 23 Jan 2005 14:10:33 +0000 (14:10 +0000)