[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Must a simple bind with DN and no pwd be treated as anonymous?

To: Sam.Johnson@FernUni-Hagen.de
Subject: Re: Must a simple bind with DN and no pwd be treated as anonymous?
From: Ludovic Poitou <ludovic.poitou@france.sun.com>
Date: Thu, 26 Aug 1999 14:55:58 +0200
Cc: openldap-general@OpenLDAP.org
Organization: Sun Microsystems Inc.
References: <199908261231.OAA13380@kudzu.fernuni-hagen.de>

This is described in the RFC2251 page 22.
Zero length password means no authentication (anonymous mode).
"Typically the DN is also of zero length". But it does mandate that it is.

I hope this helps.

Ludovic.


Sam Johnson wrote:

> While trying to implement a PAM-module for Solaris I have discovered
> that the Sun Directory Server aka LDAP server treats a simple bind with
> DN and a null (missing) password as an anonymous bind.  The documentation
> for the Netscape Directory SDK API also documents this behaviour.  So,
> do the RFC's suggest or require this, or is the matter still open to
> discussion and complaint (and modification)?
>
> Thanks for reading this.
>
> Sam Johnson                             Sam.Johnson@FernUni-Hagen.de
> ------------------------------------------------------------------------------
> FernUniversitaet                        Phone: +49-2331-987-2874,-2799
> 58084 Hagen, Germany                    Fax:   +49-2331-987-2720

--
Ludovic Poitou
Sun Microsystems Inc.
Sun-Netscape Alliance - Directory Group - Grenoble - France

Follow-Ups:
- Re: Must a simple bind with DN and no pwd be treated as anonymous?
  - From: Hallvard B Furuseth <h.b.furuseth@usit.uio.no>

References:
- Must a simple bind with DN and no pwd be treated as anonymous?
  - From: Sam Johnson <Sam.Johnson@FernUni-Hagen.de>

Prev by Date: Must a simple bind with DN and no pwd be treated as anonymous?
Next by Date: Re: ldap and tacacs (source anyone)
Index(es):
- Chronological
- Thread