In 1.5.4 we will rework the bind mechanism completely, thereby simplifying the configuration so it's more intuitive.
Alex On Sat, Jun 28, 2008 at 7:49 AM, Emmanuel Lecharny <[EMAIL PROTECTED]> wrote: > John Hughes wrote: > >> Using 1.5.2 it appears I can do an anonymous bind to the directory -yet >> the >> allowAnonymousAccess property is set to false >> >> > There are three places where the allowAnonymousAccess flag should be set in > the server.xml file : > - defaultDirectoryService > - ldapServer > - apacheDS > > Obviously, this is a little bit overkilling :) > > We should fix that... > >> >> Although when I try and do a search I do then get an access violation. >> >> > Being able to bind as anonymous and being able to fetch an entry out of the > server are two different things. In fact, you can even do a search on the > server without being forced to send a BindRequest (the rootDSE is searchable > with an anonymous authorization). Now, if the Anonymous access is forbidden, > you will get an access violation when earching the server, except when > looing for the rootDSE attributes. > >> >> Is this supposed to happen? >> >> > Basically, yes. I have to double check about the anonymous Bind, but as we > are currently working on this part of the server, this will be figured out > soon. > > Thanks ! > > -- > -- > cordialement, regards, > Emmanuel Lécharny > www.iktek.com > directory.apache.org > > >
