[Samba] Can I allow anonymous LDAP binding to samba 4.1 AD ?
Marc Muehlfeld
mmuehlfeld at samba.org
Thu Jan 22 10:52:46 MST 2015
Am 22.01.2015 um 17:19 schrieb John Yocum:
>> When I change dsHeuristics=0000002001001 like M$ said:
>>
>> https://technet.microsoft.com/en-us/library/cc816788%28v=ws.10%29.aspx
>>
>> Not works.
>>
>
> I've got anonymous binds enabled, using the instructions at
> http://www.petri.com/anonymous_ldap_operations_in_windows_2003_ad.htm
But everyone should really think about if it's a good idea to allow
anonymous bind to AD. MS had a good reason to disable this already in
Server 2003 by default!
It's better to create an AD user, and use that one for the LDAP bind.
Regards,
Marc
More information about the samba
mailing list