Man pages should mention supported providers

Each back end can support id, auth or access provider, but each
back end supports different subset of these. Man pages should
describe which providers are supported by each back end.
Ticket: #615

1 files changed, 7 insertions, 5 deletions

diff --git a/src/man/sssd-ldap.5.xml b/src/man/sssd-ldap.5.xml
index b32096dd9..402ab906f 100644
--- a/src/man/sssd-ldap.5.xml
+++ b/src/man/sssd-ldap.5.xml
@@ -35,11 +35,13 @@
             You can configure SSSD to use more than one LDAP domain.
         </para>
         <para>
-            If you want to authenticate against an LDAP server then TLS/SSL is
-            required. <command>sssd</command> <emphasis>does not</emphasis>
-            support authentication over an unencrypted channel. If the LDAP
-            server is used only as an identify provider, an encrypted channel
-            is not needed.
+            LDAP back end supports id, auth, access and chpass providers. If you want
+            to authenticate against an LDAP server either TLS/SSL, LDAPS, or
+            LDAP+GSSAPI is required. <command>sssd</command> <emphasis>does
+            not</emphasis> support authentication over an unencrypted channel.
+            If the LDAP server is used only as an identity provider, an encrypted
+            channel is not needed. Please refer to <quote>ldap_access_filter</quote>
+            config option for more information about using LDAP as an access provider.
         </para>
     </refsect1>