By: Joseph Saiko user 07 Jun 2019 at 10:35 a.m. CDT

4 Responses
Joseph Saiko gravatar
I am setting up an instance of GLUU in our lab to propose as a solution for a customer. I need to use anonymous LDAP binding but the option is not there under cache refresh. Was this removed in the newest version? Is there a prereq that I am missing?

By Aliaksandr Samuseu staff 07 Jun 2019 at 1:08 p.m. CDT

Aliaksandr Samuseu gravatar
Hi, Joseph. >Was this removed in the newest version? Yes, it was removed, as it wasn't considered a safe practice. Please consider creating a user with sufficient rights at your LDAP server.

By Joseph Saiko user 07 Jun 2019 at 1:40 p.m. CDT

Joseph Saiko gravatar
That is unfortunate. Anonymous binding is a requirement for this project.

By Michael Schwartz staff 08 Jun 2019 at 4:23 a.m. CDT

Michael Schwartz gravatar
You could write a custom authentication script. Check out the basic script that ships with the Gluu Server or [one of the basic scripts in Github](https://github.com/GluuFederation/oxAuth/tree/master/Server/integrations)

By Tyson Mahendran user 14 Apr 2020 at 12:20 p.m. CDT

Tyson Mahendran gravatar
I am finding the opposite reaction on the server, when the external ldap server enabled with anonymous access; the refresh works. When I disable the anonymous access on the ldap server... the cache refresh fail with the following error: **I am using community version of gluu server [4.1] [gluu.oxtrust.ldap.cache.service.CacheRefreshTimer] (CacheRefreshTimer.java:204) - Exception happened while executing cache refresh synchronization org.gluu.persist.exception.operation.ConfigurationException: Failed to create LDAP bind connection pool! Result code: '49' at org.gluu.persist.ldap.impl.LdapEntryManagerFactory.createEntryManager(LdapEntryManagerFactory.java:58) ~[oxcore-persistence-ldap-4.1.0.Final.jar:?] at org.gluu.persist.ldap.impl.LdapEntryManagerFactory.createEntryManager(LdapEntryManagerFactory.java:23) ~[oxcore-persistence-ldap-4.1.0.Final.jar:?] at org.gluu.persist.ldap.impl.LdapEntryManagerFactory$Proxy$_$$_WeldClientProxy.createEntryManager(Unknown Source) ~[oxcore-persistence-ldap-4.1.0.Final.jar:?] at org.gluu.oxtrust.ldap.cache.service.CacheRefreshTimer.prepareLdapServerConnection(CacheRefreshTimer.java:1155) ~[classes/:?] at org.gluu.oxtrust.ldap.cache.service.CacheRefreshTimer.prepareLdapServerConnection(CacheRefreshTimer.java:1127) ~[classes/:?] at org.gluu.oxtrust.ldap.cache.service.CacheRefreshTimer.prepareLdapServerConnections(CacheRefreshTimer.java:1115) ~[classes/:?] at org.gluu.oxtrust.ldap.cache.service.CacheRefreshTimer.processImpl(CacheRefreshTimer.java:271) ~[classes/:?] at org.gluu.oxtrust.ldap.cache.service.CacheRefreshTimer.processInt(CacheRefreshTimer.java:199) [classes/:?] at org.gluu.oxtrust.ldap.cache.service.CacheRefreshTimer$Proxy$_$$_WeldSubclass.processInt(Unknown Source) [classes/:?] at org.gluu.oxtrust.ldap.cache.service.CacheRefreshTimer.process(CacheRefreshTimer.java:183) [classes/:?] at org.gluu.oxtrust.ldap.cache.service.CacheRefreshTimer$Proxy$_$$_WeldSubclass.process$$super(Unknown Source) [classes/:?] at sun.reflect.GeneratedMethodAccessor293.invoke(Unknown Source) ~[?:?] at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) ~[?:1.8.0_222] at java.lang.reflect.Method.invoke(Method.java:498) ~[?:1.8.0_222] at org.jboss.weld.interceptor.proxy.TerminalAroundInvokeInvocationContext.proceedInternal(TerminalAroundInvokeInvocationContext.java:51) [weld-core-impl-3.1.2.Final.jar:3.1.2.Final] at org.jboss.weld.interceptor.proxy.AroundInvokeInvocationContext.proceed(AroundInvokeInvocationContext.java:78) [weld-core-impl-3.1.2.Final.jar:3.1.2.Final] at org.gluu.service.cdi.async.AsynchronousInterceptor$1.get(AsynchronousInterceptor.java:36) [oxcore-service-4.1.0.Final.jar:?] at java.util.concurrent.CompletableFuture$AsyncSupply.run(CompletableFuture.java:1590) [?:1.8.0_222] at java.lang.Thread.run(Thread.java:748) [?:1.8.0_222]