By: Joseph Saiko user 07 Jun 2019 at 10:35 a.m. CDT

4 Responses
Joseph Saiko gravatar
I am setting up an instance of GLUU in our lab to propose as a solution for a customer. I need to use anonymous LDAP binding but the option is not there under cache refresh. Was this removed in the newest version? Is there a prereq that I am missing?

By Aliaksandr Samuseu staff 07 Jun 2019 at 1:08 p.m. CDT

Aliaksandr Samuseu gravatar
Hi, Joseph. >Was this removed in the newest version? Yes, it was removed, as it wasn't considered a safe practice. Please consider creating a user with sufficient rights at your LDAP server.

By Joseph Saiko user 07 Jun 2019 at 1:40 p.m. CDT

Joseph Saiko gravatar
That is unfortunate. Anonymous binding is a requirement for this project.

By Michael Schwartz staff 08 Jun 2019 at 4:23 a.m. CDT

Michael Schwartz gravatar
You could write a custom authentication script. Check out the basic script that ships with the Gluu Server or [one of the basic scripts in Github](

By Tyson Mahendran user 14 Apr 2020 at 12:20 p.m. CDT

Tyson Mahendran gravatar
I am finding the opposite reaction on the server, when the external ldap server enabled with anonymous access; the refresh works. When I disable the anonymous access on the ldap server... the cache refresh fail with the following error: **I am using community version of gluu server [4.1] [gluu.oxtrust.ldap.cache.service.CacheRefreshTimer] ( - Exception happened while executing cache refresh synchronization org.gluu.persist.exception.operation.ConfigurationException: Failed to create LDAP bind connection pool! Result code: '49' at org.gluu.persist.ldap.impl.LdapEntryManagerFactory.createEntryManager( ~[oxcore-persistence-ldap-4.1.0.Final.jar:?] at org.gluu.persist.ldap.impl.LdapEntryManagerFactory.createEntryManager( ~[oxcore-persistence-ldap-4.1.0.Final.jar:?] at org.gluu.persist.ldap.impl.LdapEntryManagerFactory$Proxy$_$$_WeldClientProxy.createEntryManager(Unknown Source) ~[oxcore-persistence-ldap-4.1.0.Final.jar:?] at org.gluu.oxtrust.ldap.cache.service.CacheRefreshTimer.prepareLdapServerConnection( ~[classes/:?] at org.gluu.oxtrust.ldap.cache.service.CacheRefreshTimer.prepareLdapServerConnection( ~[classes/:?] at org.gluu.oxtrust.ldap.cache.service.CacheRefreshTimer.prepareLdapServerConnections( ~[classes/:?] at org.gluu.oxtrust.ldap.cache.service.CacheRefreshTimer.processImpl( ~[classes/:?] at org.gluu.oxtrust.ldap.cache.service.CacheRefreshTimer.processInt( [classes/:?] at org.gluu.oxtrust.ldap.cache.service.CacheRefreshTimer$Proxy$_$$_WeldSubclass.processInt(Unknown Source) [classes/:?] at org.gluu.oxtrust.ldap.cache.service.CacheRefreshTimer.process( [classes/:?] at org.gluu.oxtrust.ldap.cache.service.CacheRefreshTimer$Proxy$_$$_WeldSubclass.process$$super(Unknown Source) [classes/:?] at sun.reflect.GeneratedMethodAccessor293.invoke(Unknown Source) ~[?:?] at sun.reflect.DelegatingMethodAccessorImpl.invoke( ~[?:1.8.0_222] at java.lang.reflect.Method.invoke( ~[?:1.8.0_222] at org.jboss.weld.interceptor.proxy.TerminalAroundInvokeInvocationContext.proceedInternal( [weld-core-impl-3.1.2.Final.jar:3.1.2.Final] at org.jboss.weld.interceptor.proxy.AroundInvokeInvocationContext.proceed( [weld-core-impl-3.1.2.Final.jar:3.1.2.Final] at org.gluu.service.cdi.async.AsynchronousInterceptor$1.get( [oxcore-service-4.1.0.Final.jar:?] at java.util.concurrent.CompletableFuture$ [?:1.8.0_222] at [?:1.8.0_222]