<br><br><div class="gmail_quote">On Jan 24, 2008 4:37 PM,  <<a href="mailto:shivaraj.shivanna@wipro.com">shivaraj.shivanna@wipro.com</a>> wrote:<br><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">




<div>
<div><span><font face="Arial" size="2">Hi,</font></span></div>
<div><span><font face="Arial" size="2">Our organization has 
an AD server running which requires you to bind to it first before querying the 
server. </font></span></div>
<div><span><font face="Arial" size="2"></font></span> </div>
<div><span><font face="Arial" size="2">For example commands 
like</font></span></div>
<div><span>    <font face="Arial" size="2"><i>ldapsearch -x -h "some ip" "(cn=abcd)" -b "some base" </i>would fail 
with <i>LdapErr: DSID-0C090627, comment: In order to perform this 
</i></font></span></div>
<div><span><font face="Arial" size="2"><i>operation a 
successful bind must be completed on the connection.</i></font></span></div>
<div><span><font face="Arial" size="2">but commands 
like</font></span></div>
<div><span>    <font face="Arial" size="2"><i>ldapsearch -x -h "some ip" "(cn=abcd)" -b "some base"  -D "some 
user dn" -W</i>  would work on entering correct 
password.</font></span></div>
<div><span><font face="Arial" size="2"></font></span> </div>
<div><span><font face="Arial" size="2">How can we replicate 
this behavior with the fedora directory server ?</font></span></div></div></blockquote><div><br>through access control lists,  you can disable anonymous access and specify authorization <br>
<br>
You can refer the below<br>
<a href="http://www.redhat.com/docs/manuals/dir-server/ag/8.0/Managing_Access_Control-Default_ACIs.html">http://www.redhat.com/docs/manuals/dir-server/ag/8.0/Managing_Access_Control-Default_ACIs.html</a><br>
<a href="http://www.redhat.com/docs/manuals/dir-server/ag/8.0/Managing_Access_Control-Access_Control_Usage_Examples.html">http://www.redhat.com/docs/manuals/dir-server/ag/8.0/Managing_Access_Control-Access_Control_Usage_Examples.html
</a><br>
 </div><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;"><div><div><span><font face="Arial" size="2"></font></span></div>
<div><span><font face="Arial" size="2"></font></span> </div>
<div><span><font face="Arial" size="2">Regards,</font></span></div>
<div><span><font face="Arial" size="2">Shivraj</font></span></div></div>
<br>--<br>Fedora-directory-users mailing list<br><a href="mailto:Fedora-directory-users@redhat.com">Fedora-directory-users@redhat.com</a><br><a href="https://www.redhat.com/mailman/listinfo/fedora-directory-users" target="_blank">
https://www.redhat.com/mailman/listinfo/fedora-directory-users</a><br><br></blockquote></div><br>