KB Article # 7744
Issue: If you are using LDAP authentication and have security concerns, this will show you how to disable the anonymous access to the directory of OpenLDAP if it is not required
Following are few configuration that can be done to disable the anonymous access to the directory:-
- Add the following line in ‘OpenLDAP/slapd.conf’ file:-
access to * by anonymous none
This has been tested over the OpenLDAP2.4 provided in Ephesoft by default.
- Add the following two lines in ‘OpenLDAP/slapd.conf’ file to explicitly deny anonymous binds and anonymous access to the directory information:-
disallow bind_anon require authc