directory-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Alex Karasulu" <akaras...@apache.org>
Subject Re: Anon Bind
Date Wed, 02 Jul 2008 01:36:16 GMT
In 1.5.4 we will rework the bind mechanism completely, thereby simplifying
the configuration so it's more intuitive.

Alex

On Sat, Jun 28, 2008 at 7:49 AM, Emmanuel Lecharny <elecharny@apache.org>
wrote:

> John Hughes wrote:
>
>> Using 1.5.2 it appears I can do an anonymous bind to the directory -yet
>> the
>> allowAnonymousAccess property is set to false
>>
>>
> There are three places where the allowAnonymousAccess flag should be set in
> the server.xml file :
> - defaultDirectoryService
> - ldapServer
> - apacheDS
>
> Obviously, this is a little bit overkilling :)
>
> We should fix that...
>
>>
>> Although when I try and do a search I do then get an access violation.
>>
>>
> Being able to bind as anonymous and being able to fetch an entry out of the
> server are two different things. In fact, you can even do a search on the
> server without being forced to send a BindRequest (the rootDSE is searchable
> with an anonymous authorization). Now, if the Anonymous access is forbidden,
> you will get an access violation when earching the server, except when
> looing for the rootDSE attributes.
>
>>
>> Is this supposed to happen?
>>
>>
> Basically, yes. I have to double check about the anonymous Bind, but as we
> are currently working on this part of the server, this will be figured out
> soon.
>
> Thanks !
>
> --
> --
> cordialement, regards,
> Emmanuel L├ęcharny
> www.iktek.com
> directory.apache.org
>
>
>

Mime
  • Unnamed multipart/alternative (inline, None, 0 bytes)
View raw message