Top 10 Downloads
  Last 15 New Files
  Web Links
  Last 15 New Tips
  NLM Programming
  Admins Club

SUPLA System
Internet of Things

Installation and Administration

Polish Forum SUSE

Who's Online

 There are currently,
2 guest(s)
that is (are) online.

Technical Information

Back to List of Categories

Technical Information about
  A Beginner's Guide to LDAP Development
  Changing Time SourceType for a 4.X server
  Common Dsrepair switches - with explanations
  Deactivating Anonymous LDAP Logins
  DSMaint -PSE (Replacing Crashed Server)
  DSRepair: Is It Overused?
  Fixing ConsoleOne Refresh Problems
  Generic Design for an iManager Plugin
  Generic Design of iManager Plugin - Part 2
  Getting ConsoleOne Running on Red Hat 9
  LDAP Directory Service: Novell eDirectory
  NMAS and Kerberos
  Removing a Crashed Server from the NDS Tree
  The DSREPAIR Utility
  Timesync Config, Issues and Definitions
  Understanding eDirectory and Clustering
  Universal Password and Containers

Technical Information
 Deactivating Anonymous LDAP Logins

Printer-friendly version

Posted: 13 Apr 2005

A reader recently asked about deactivating anonymous LDAP logins:

"Is there a way to deactivate the anonymous LDAP login? I want only authorized users to have access to LDAP. This is to support our company policy."

And here are responses from two Forum experts:

Expert 1: ConsoleOne setup

Yes, you can. If you are running the or higher version of eDirectory and have the LDAP Schema extensions installed, you can do this from ConsoleOne:

  1. Load ConsoleOne.
  2. Browse to your LDAP server object.
  3. Right-click Properties | Other tab.
  4. Click Attribute Add.
  5. Scroll to the ldapBindRestrictions attribute and click OK.
  6. To disable anonymous binds, put a value of 1 in the attribute value field. To allow such connections, put in a value of 0.
  7. Select Apply and click OK.

Expert 2: iManager setup

Yes. Here are the steps to follow from iManager:

  1. Login to iManager as admin.
  2. Go to LDAP Overview (on left side, in LDAP section).
  3. Click the View LDAP Servers tab.
  4. Select the server to be edited.
  5. In the dropdown menu, choose Connections.
  6. In the section at the bottom called "Restrictions" there is a dropdown menu for Bind Restrictions. Change that to "Disallow anonymous simple bind" and click Apply.

That should do it. You'll have to repeat these steps for each LDAP server you want to restrict.

Since 2003

Portal posiada akceptację firmy Novell Polska
Wszystkie materiały dotyczące produktów firmy Novell umieszczono za zgodą Novell Polska
Portal has been accepted by the Novell Polska
All materials concerning products of Novell firm are placed with Novell Polska consent.
NetWare is a registered trademark of Novell Inc. in the United States and other countries.
Windows is a trademark or a registered trademark of Microsoft Corporation in the United States and other countries.
Sybase is a registered trademark of Sybase Inc. in the United States of America.
Other company and product names are trademarks or registered trademarks of their respective owners.