歡迎您光臨本站 註冊首頁

關於openldap中anonymous 訪問的userid問題

←手機掃碼閱讀     火星人 @ 2014-03-05 , reply:0

關於openldap中anonymous 訪問的userid問題

在使用匿名訪問時候,有兩種情形.
(1) no userid, no password
(2) userid , no password.

第一種情況很好理解,對於第二種情形,這裡的userid是什麼呢?是僅只的"anonymous"這個userid可以呢?
還是其他任何的userid都可以?比如 "zhangsan", "lisi"



具體可參考
10.3.1. "simple" method
The LDAP "simple" method has three modes of operation:

anonymous,
unauthenticated, and
user/password authenticated.
《解決方案》

覺得是確實存在的userid,只是不需要密碼.

是在哪裡看到的? 發個連接上來
《解決方案》

10.3

http://www.bind9.net/manual/openldap/2.3/security.html
《解決方案》

The document you provided above describe that when you provide no name and no password with bind operation, this kind of access named anonymous. Hence, the situation you said which only provided user name but without password is not included by Anonymous access.
According to the document, you would be obtained an unauthenticated access if you provide a name but no password. And it is also proclaimed in the "10.3.1. simple method" section that an unauthenticated bind will result in an anonymous authorization association only if you enable it by specifying "allow bind_anon_cred" in slapd.conf.
Therefore, it would be failed to the authentication in condition of "(2) userid , no password." by default setting.
《解決方案》

thanks

got it.

[火星人 ] 關於openldap中anonymous 訪問的userid問題已經有626次圍觀

http://coctec.com/docs/service/show-post-43165.html