OUD 11g - How to Disable Anonymous Access In OUD 184.108.40.206.x
(Doc ID 2262106.1)
Last updated on JUNE 30, 2022
Applies to:Oracle Unified Directory - Version 220.127.116.11.161018 and later
Information in this document applies to any platform.
Subject: How to disable anonymous access in OUD 18.104.22.168.x
Original steps to disable anonymous access were incorrectly described in the following older OUD Documentation:
When attempting to use these steps, it can fail when the following is executed:
$ ./dsconfig -h localhost -p ADMIN_PORT -D "cn=DS_ADMIN" -j <PASSWORD_FILE> -n \
> set-access-control-handler-prop \
> --remove global-aci:'(targetattr!="userPassword||authPassword") \
> (version 3.0; acl "Anonymous read access"; \
> allow (read,search,compare) userdn="ldap:///anyone";)'
The value "(targetattr!="userPassword||authPassword") \
(version 3.0; acl "Anonymous read access"; \
allow (read,search,compare) userdn="ldap:///anyone";)" is not a valid value
for the Dsee Compat Access Control Handler property "global-aci" which has the
following syntax: ACI
Also checking, using ODSM (Oracle Directory Services Manager), two items are under Directory ACLs,
which do not match the descriptions in the original instructions/examples:
Anonymous control access:
To view full details, sign in with your My Oracle Support account.
Don't have a My Oracle Support account? Click to get started!
In this Document