diff --git a/lam/docs/manual-sources/howto.xml b/lam/docs/manual-sources/howto.xml
index 8fa8b1a3..87ca58dc 100644
--- a/lam/docs/manual-sources/howto.xml
+++ b/lam/docs/manual-sources/howto.xml
@@ -5612,6 +5612,14 @@ Run slapindex to rebuild the index.
This needs to be the public part of the signing certificate
authority. See "man ldap.conf" for additional options.
+
+
+
+
+ You may also need to specify the CA certificate in your Apache
+ configuration by using the option "LDAPTrustedGlobalCert":
+
+ LDAPTrustedGlobalCert /etc/ldap/ca/myCA/cacert.pem
@@ -5829,9 +5837,16 @@ Run slapindex to rebuild the index.
account must be accepted by the SSH daemon of your home directory
server. Do not create a second local account but change your system
to accept LDAP users. You can use LAM to add the Unix account part
- to your admin user.
+ to your admin user or create a new account. Please do not forget to
+ setup LDAP write access (ACLs) if you create a new account.
+
+ OpenLDAP ACL location:
+
+ The access rights for OpenLDAP are configured in
+ /etc/ldap/slapd.conf or
+ /etc/ldap/slapd.d/cn=config/olcDatabase={1}bdb.ldif.