Hello, I've remarked that when I BIND to an ldap server and enter an empty password it binds successfully, is that normal ? I would like to only let users which are defined in ou=LDAPuser,dc=mydomain,dc=com to use LDAP, how can I acheive that with the access statement ? I do not want to allow any anonymous binds... Many thanks Regards Marc