Authenticating for Searches

None of the examples presented so far in this chapter have involved authenticating to the directory. All connections have been anonymous (not using a DN or password). Most LDAP directories are configured to allow anonymous searching of at least some of the information in the system, but some attributes may have access control configured to prevent access. For instance, the corporate directory at Netscape Communications Corporation does not allow anonymous connections to retrieve the JPEG photo of an employee. Only security personnel or the employee corresponding to the entry may retrieve this attribute. The same usually is true for the userPassword attribute as well.

If you ask for one of the required or commonly used ...

Get LDAP Programming with Java™ now with O’Reilly online learning.

O’Reilly members experience live online training, plus books, videos, and digital content from 200+ publishers.