[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Must a simple bind with DN and no pwd be treated as anonymous?

To: mcs@netscape.com, h.b.furuseth@usit.uio.no
Subject: Re: Must a simple bind with DN and no pwd be treated as anonymous?
From: Jim Sermersheim <JIMSE@novell.com>
Date: Thu, 26 Aug 1999 10:28:15 -0600
Cc: Sam.Johnson@FernUni-Hagen.de, ludovic.poitou@france.sun.com, ietf-ldapext@netscape.com, openldap-general@OpenLDAP.org
Content-disposition: inline
Resent-date: Thu, 26 Aug 1999 09:28:35 -0700 (PDT)
Resent-from: ietf-ldapext@netscape.com
Resent-message-id: <"e9uAh.A.2_C.qsWx3"@glacier>
Resent-sender: ietf-ldapext-request@netscape.com

>>> Mark Smith <mcs@netscape.com> 8/26/99 8:48:33 AM >>>
>The text in 2251 section 4.2.2 says:

>   If no authentication is to be performed, then the simple
>   authentication option MUST be chosen, and the password be of zero
>   length.  (This is often done by LDAPv2 clients.)  Typically the DN is
>   also of zero length.

So, if I were going to implement the Authentication Response Control, and the server gets a bind with a valid DN and an empty password, what does it send back as the authDN in the response control (empty or original DN)? Or does it not send a response control at all, since no 'authentication' happened?

Jim

Follow-Ups:
- Re: Must a simple bind with DN and no pwd be treated asanonymous?
  - From: rweltman@netscape.com (Rob Weltman)
- Re: Must a simple bind with DN and no pwd be treated as anonymous?
  - From: RL 'Bob' Morgan <rlmorgan@cac.washington.edu>

Prev by Date: Re: Must a simple bind with DN and no pwd be treated as anonymous?
Next by Date: Re: Must a simple bind with DN and no pwd be treated asanonymous?
Index(es):
- Chronological
- Thread