[Fedora-directory-users] Anonymous bind with restrictive ACIs
Adams, Samuel D Contr AFRL/HEDR
Samuel.Adams at BROOKS.AF.MIL
Tue Aug 22 13:54:43 UTC 2006
Does anyone know what the minimum set of attributes are that need to be
anonymously readable and still allow the OpenLDAP PAM client to
authenticate?
I tried to lock it down to only allow username, but that was too
restrictive. Now I just have it restricting only the userPassword, but
I thing there is room for further tightening.
Sam Adams
General Dynamics - Information Technology
Phone: 210.536.5945
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.fedoraproject.org/pipermail/389-users/attachments/20060822/85f34d46/attachment.html>
More information about the 389-users
mailing list