Preventing Anonymous LDAP Binds
Articles and Tips: qna
01 Jan 2003
Q.
Is there any way to configure LDAP to prevent anonymous binds? I've tried various things with the LDAPproxy user but so far with no luck. If it is actually possible, would preventing anonymous binds introduce other potential problems?
Mary from Moundsville
A.
Dear Mary: Disable the proxy user and you've disabled anonymous binds. Another way would be to remove all rights from the proxy user and then they will be able to bind but they won't be able to see anything (it's the rights of the proxy user that determine what an anonymous bind can see). Also, be sure to check out the "public read" flags in the schema. These apply, even if you have limited your proxy user rights and have removed [Public] rights.
* Originally published in Novell AppNotes
Disclaimer
The origin of this information may be internal or external to Novell. While Novell makes all reasonable efforts to verify this information, Novell does not make explicit or implied claims to its validity.