[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Root dn Authentication question for OpenLDAP



It's best to only use the rootdn feature to jump start your
directory.  Once you have initial entries loaded, leave rootdn
unset and rely on ACLs.

At 10:25 AM 9/6/00 -0400, Christian J. Chuba wrote:
>1. Can we restrict binding to the root dn so that it is only allowed from a specific ip address (or DNS name)?

No.

>2. If the answer to number 1 is no then is there any support for black listisng an ip address if it tries to bind to the root dn and it fails 3 times in a row?

No.