How to enable OpenLDAP anonymous bind

[rauno]

Hi,
Im using OpenLDAP to authenticate my apache webpage. At the moment the authentication part is described in .htaccess file and everything works. But I want to use Anonymous bind. I have read that if I do not use lines AuthLDAPBindDN and AuthLDAPPassword, then it should use anonymous bind. But then I dont get any login window and webpage loads instantly.
OpenLDAP is configured by Zentyal only.
How can I enable Anonymous bind?
.htaccess:

Code: [Select]

order deny, allow
Deny from All
Authname "Rauno Secure Sales"
AuthType Basic
AuthBasicProvider ldap
AuthzLDAPAuthoritative on
AuthLDAPURL ldap://127.0.0.1:390/ou=Users,dc=raunolehiste,dc=ee?uid
AuthLDAPBindDN cn=zentyal,dc=raunolehiste,dc=ee
AuthLDAPBindPassword hashedpassword
Require valid-user
Satisfy any

[christian]

Could you please explain what you expect with LDAP anonymous bind from Apache? I mean in term of behaviour and goal.

[rauno]

I want to get my authentication to work with htaccess file like this:

Code: [Select]

Authname "Rauno Secure Sales"
AuthType Basic
AuthBasicProvider ldap
AuthLDAPURL ldap://127.0.0.1:390/ou=Users,dc=raunolehiste,dc=ee?uid
Require valid-user
When I go to page I should get login window asking username and password that have to match OpenLDAP user. If they are correct the user would see the webpage

[christian]

Please check slapd.conf for:
- disallow bind_anon
- require authc
- allow bind_anon_cred

And tell us what you find.

[rauno]

I copied /usr/share/slapd/slapd.conf to /etc/ldap/slapd.conf, then I added allow bind_anon_cred to /etc/ldap/sldap.conf
disallow bind_anon and require authc are NOT in slapd.conf

[christian]

I copied /usr/share/slapd/slapd.conf to /etc/ldap/slapd.conf, then I added allow bind_anon_cred to /etc/ldap/sldap.conf
disallow bind_anon and require authc are NOT in slapd.conf

And so what 
Furthermore, you may have to read this.
Zentyal configuration is based on template. I'm afraid your implementation doesn't work, does it?