< Home

ad-server authentication manager-anonymous enable

Function

The ad-server authentication manager-anonymous enable command allows an administrator to access an AD server anonymously.

The undo ad-server authentication manager-anonymous enable command prevents an administrator from accessing an AD server anonymously.

By default, administrator from accessing an AD authentication server anonymously is disabled.

Format

ad-server authentication manager-anonymous enable

undo ad-server authentication manager-anonymous enable

Parameters

None

Views

AD server template view

Default Level

3: Management level

Usage Guidelines

If the AD server allows anonymous access, run the ad-server authentication manager-anonymous enable command. After this command is executed, the device deletes the DN and password of the administrator and removes the Base DN from the administrator DN. To prevent an administrator from logging in to the AD server anonymously, run the undo ad-server authentication manager-anonymous enable command and configure the administrator DN and password. To configure the administrator DN and password, run the ad-server authentication manager command.

In anonymous login, users do not need to enter the password; therefore, there are security risks. Make an all-round evaluation to determine whether to enable anonymous login.

Example

# Allow an administrator to access an AD authentication server anonymously.

<sysname> system-view
[sysname] ad-server template temp1
[sysname-ad-temp1] ad-server authentication manager-anonymous enable
Parent Topic: AD Configuration Commands
Copyright © Huawei Technologies Co., Ltd.
Copyright © Huawei Technologies Co., Ltd.
< Previous topic Next topic >