File tree Expand file tree Collapse file tree 4 files changed +4
-28
lines changed Expand file tree Collapse file tree 4 files changed +4
-28
lines changed Original file line number Diff line number Diff line change @@ -363,11 +363,6 @@ auth_ldap.ssl_options.verify = verify_peer
363363auth_ldap.ssl_options.verify = verify_none
364364```
365365
366- ``` ini
367- # if target LDAP server does not present a certificate, should the connection be aborted?
368- auth_ldap.ssl_options.fail_if_no_peer_cert = true
369- ```
370-
371366#### Peer Chain Verification Depth
372367
373368[ Certificate chain verification depth] ( ./ssl#peer-verification-depth ) can be increased
@@ -397,8 +392,7 @@ The below example uses an [`advanced.config` format](./configure#advanced-config
397392 {ssl_options , [{cacertfile , " /path/to/ca_certificate.pem"
398393 {certfile , " /path/to/server_certificate.pem"
399394 {keyfile , " /path/to/server_key.pem"
400- {verify , verify_peer },
401- {fail_if_no_peer_cert , true }]},
395+ {verify , verify_peer },
402396 {server_name_indication , " ldap.identity.eng.megacorp.local"
403397 {ssl_hostname_verification , wildcard }
404398 ]}
Original file line number Diff line number Diff line change @@ -359,11 +359,6 @@ auth_ldap.ssl_options.verify = verify_peer
359359auth_ldap.ssl_options.verify = verify_none
360360```
361361
362- ``` ini
363- # if target LDAP server does not present a certificate, should the connection be aborted?
364- auth_ldap.ssl_options.fail_if_no_peer_cert = true
365- ```
366-
367362#### Peer Chain Verification Depth
368363
369364[ Certificate chain verification depth] ( ./ssl#peer-verification-depth ) can be increased
@@ -393,8 +388,7 @@ The below example uses an [`advanced.config` format](./configure#advanced-config
393388 {ssl_options , [{cacertfile , " /path/to/ca_certificate.pem"
394389 {certfile , " /path/to/server_certificate.pem"
395390 {keyfile , " /path/to/server_key.pem"
396- {verify , verify_peer },
397- {fail_if_no_peer_cert , true }]},
391+ {verify , verify_peer },
398392 {server_name_indication , " ldap.identity.eng.megacorp.local"
399393 {ssl_hostname_verification , wildcard }
400394 ]}
Original file line number Diff line number Diff line change @@ -363,11 +363,6 @@ auth_ldap.ssl_options.verify = verify_peer
363363auth_ldap.ssl_options.verify = verify_none
364364```
365365
366- ``` ini
367- # if target LDAP server does not present a certificate, should the connection be aborted?
368- auth_ldap.ssl_options.fail_if_no_peer_cert = true
369- ```
370-
371366#### Peer Chain Verification Depth
372367
373368[ Certificate chain verification depth] ( ./ssl#peer-verification-depth ) can be increased
@@ -397,8 +392,7 @@ The below example uses an [`advanced.config` format](./configure#advanced-config
397392 {ssl_options , [{cacertfile , " /path/to/ca_certificate.pem"
398393 {certfile , " /path/to/server_certificate.pem"
399394 {keyfile , " /path/to/server_key.pem"
400- {verify , verify_peer },
401- {fail_if_no_peer_cert , true }]},
395+ {verify , verify_peer },
402396 {server_name_indication , " ldap.identity.eng.megacorp.local"
403397 {ssl_hostname_verification , wildcard }
404398 ]}
Original file line number Diff line number Diff line change @@ -363,11 +363,6 @@ auth_ldap.ssl_options.verify = verify_peer
363363auth_ldap.ssl_options.verify = verify_none
364364```
365365
366- ``` ini
367- # if target LDAP server does not present a certificate, should the connection be aborted?
368- auth_ldap.ssl_options.fail_if_no_peer_cert = true
369- ```
370-
371366#### Peer Chain Verification Depth
372367
373368[ Certificate chain verification depth] ( ./ssl#peer-verification-depth ) can be increased
@@ -397,8 +392,7 @@ The below example uses an [`advanced.config` format](./configure#advanced-config
397392 {ssl_options , [{cacertfile , " /path/to/ca_certificate.pem"
398393 {certfile , " /path/to/server_certificate.pem"
399394 {keyfile , " /path/to/server_key.pem"
400- {verify , verify_peer },
401- {fail_if_no_peer_cert , true }]},
395+ {verify , verify_peer },
402396 {server_name_indication , " ldap.identity.eng.megacorp.local"
403397 {ssl_hostname_verification , wildcard }
404398 ]}
You can’t perform that action at this time.
0 commit comments