directory-commits mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Apache Wiki <wikidi...@apache.org>
Subject [Directory Wiki] Update of "EveGeneral" by AlexKarasulu
Date Sat, 23 Apr 2005 17:56:59 GMT
Dear Wiki user,

You have subscribed to a wiki page or wiki category on "Directory Wiki" for change notification.

The following page has been changed by AlexKarasulu:
http://wiki.apache.org/directory/EveGeneral

------------------------------------------------------------------------------
  
   * There are advantages to creating entries with userPassword fields under ou=users, ou=system.
 First the entry is available regardless of the context partitions that are created.  The
entry is also protected by some hardcoded authorization rules within the system.  Namely only
self read is possible for all non-admin principals on their own accounts.  Standard principals
cannot see the credentials of others minus the super-user of course.  This is an intermediate
hardcoded authorization rule set until the authorization subsystem matures.
  
-  * By default, anonymous binds are allowed both via JNDI interfaces and via LDAP based network
clients.  So the server will start and work without any initial configuration.  The presence
of the ""eve.disable.anonymous"" property key disables anonymous user access on both interfaces
(JNDI and LDAP).
+  * By default, anonymous binds are allowed both via JNDI interfaces and via LDAP based network
clients.  So the server will start and work without any initial configuration.  The presence
of the "server.disable.anonymous" property key disables anonymous user access on both interfaces
(JNDI and LDAP).
  
  = Authenticator SPI =
  There are 3 ways in which a client can authenticate to the ApacheDS: anonymous, simple,
and SASL. Currently only anonymous and simple mechanism (with plain text password) are supported
by default in ApacheDS. See http://java.sun.com/products/jndi/tutorial/ldap/security/index.html
for more information.

Mime
View raw message