Security vulnerability scan reported authentication via a 'NULL BIND'
search cancel

Security vulnerability scan reported authentication via a 'NULL BIND'

book

Article ID: 408112

calendar_today

Updated On:

Products

CA Directory

Issue/Introduction

The LDAP server is configured allowing a user connect without authentication - via a 'NULL BIND' - and query it for information.

Environment

CA Directory 14.*

Cause

Directory is configured to use access control.

Resolution

The directory is configured to use access control where anonymous access is restricted to publicly available information. It is by design. Contact CA Directory administrator for further clarifications.

Powered by Wolken Software