[Date Prev][Date Next]
Re: Bind and StrongAuthRequired
[Allow BindResponse to request a stronger authentiation mechanism]
This change makes a lot of sense; it also suggests removing the requirement
in [draft-ietf-ldapbis-authmeth-03.txt: para G.12] that states that servers
MUST support password based authentication.
If a server is allowed to reject binds for reasons of lack of strength,
it's silly to require a server to advertise a mechanism that it knows in
advance it's going to reject.
BTW, were there any changes made to the auth document?