Languages

OS X Server: How to require authenticated binding between server and clients

Learn how to require authenticated binding between OS X clients and OS X Server.

This setting only affects OS X clients binding to OS X Server. If it is enabled, clients will be prompted for a directory administrator password when binding to the server. This setting does not control or limit any other access the LDAP database on the server.

You can set this by using the slapconfig Terminal command on the server.

  • To require authentication when a client binds to the server, use this Terminal command:

sudo slapconfig -setmacosxodpolicy -binding required
 

  • To allow authenticated binding, but make it optional (the default setting), use this Terminal command:

sudo slapconfig -setmacosxodpolicy -binding enabled
 

  • To disable authenticated binding, use this Terminal command:

sudo slapconfig -setmacosxodpolicy -binding disabled

Additional Information

To determine the state of this setting, use this command:

sudo slapconfig -getmacosxodpolicy

The key "Directory Binding" indicates whether authenticated binding is enabled. The key "Binding Required" indicates whether it is required.

Last Modified: Aug 19, 2013
Helpful?
Yes
No
Not helpful Somewhat helpful Helpful Very helpful Solved my problem
Print this page
  • Last Modified: Aug 19, 2013
  • Article: HT4068
  • Views:

    28412
  • Rating:
    • 59.0

    (524 Responses)
Start a Discussion
in Apple Support Communities
See all questions on this article See all questions I have asked