The defines whether
the ldap server requires ldap traffic to be signed or signed and encrypted (sealed).
Possible values are no, allow_sasl_over_tls
and yes.
A value of no allows simple and sasl binds over
all transports.
A value of allow_sasl_over_tls allows simple and sasl binds
(without sign or seal) over TLS encrypted connections. Unencrypted connections only
allow sasl binds with sign or seal.
A value of yes allows only simple binds
over TLS encrypted connections. Unencrypted connections only
allow sasl binds with sign or seal.
yes