From: Kurt Zeilenga <kurt@openldap.org>
Date: Tue, 16 May 2006 18:40:07 +0000 (+0000)
Subject: Clarify that "disable bind_anon" does not disable anonymous access.
X-Git-Tag: OPENLDAP_REL_ENG_2_4_1ALPHA~2^2~1
X-Git-Url: https://git.sur5r.net/?a=commitdiff_plain;h=d043fca769b398061bc258196be0958571787db1;p=openldap

Clarify that "disable bind_anon" does not disable anonymous access.
---

diff --git a/doc/guide/admin/security.sdf b/doc/guide/admin/security.sdf
index 38044b651b..bf6e443c35 100644
--- a/doc/guide/admin/security.sdf
+++ b/doc/guide/admin/security.sdf
@@ -125,7 +125,10 @@ by providing a valid name and password.
 An anonymous bind results in an {{anonymous}} authorization
 association.  Anonymous bind mechanism is enabled by default, but
 can be disabled by specifying "{{EX:disallow bind_anon}}" in
-{{slapd.conf}}(5).
+{{slapd.conf}}(5).  Note that disabling the anonymous bind mechanism
+does not prevent anonymous access to the directory.  To require
+authentication to access the directory, one should instead
+specify "{{EX:require authc}}".
 
 An unauthenticated bind also results in an {{anonymous}} authorization
 association.  Unauthenticated bind mechanism is disabled by default,