setldapssl(8)
224 SPARC Enterprise Mx000 Servers XSCF Reference Manual • Last Revised February 2010
logdetail Enable logging of LDAP/SSL authentication and
authorization diagnostic messages at the specified detail
level. This log is for use in troubleshooting and is cleared
on SP reboot. Level can be one of the following:
none Do not log diagnostic messages. Use
this setting during normal system
operation
high Log only high-severity diagnostic
messages
medium Log only high-severity and medium-
severity diagnostic messages
low Log high-severity, medium-severity,
and informational diagnostic
messages
trace Log high-severity, medium-severity,
informational, and trace-level
diagnostic messages
log [options] clear Clear the log file of LDAP/SSL authentication and
authorization diagnostic messages.
strictcertmode Enable or disable strictcertmode mode. This mode is
disabled by default; the channel is secure, but limited
validation of the certificate is performed. If strictcertmode
is enabled, the server’s certificate must have already been
uploaded to the server so that the certificate signatures
can be validated when the server certificate is presented.
Data is always protected, even if strictcertmode is
disabled. Strictcertmode applies to primary and alternate
servers alike.