The ANONYMOUS SASL mechanism provides the ability for clients to perform an anonymous bind using a SASL mechanism.
The only real benefit that this provides over a normal anonymous bind (that is, using simple authentication with no password) is that the ANONYMOUS SASL mechanism also allows the client to include a trace string in the request. This trace string can help identify the application that performed the bind (although since there is no authentication, there is no assurance that some other client did not spoof that trace string).
The Anonymous SASL Mechanism Handler component inherits from the SASL Mechanism Handler
A description of each property follows.
| Basic Properties: | Advanced Properties: |
|---|---|
| ↓ enabled | ↓ java-class |
| Description | Indicates whether the SASL mechanism handler is enabled for use. |
| Default Value | None |
| Allowed Values | true false |
| Multi-valued | No |
| Required | Yes |
| Admin Action Required | None |
| Advanced Property | No |
| Read-only | No |
| Description | Specifies the fully-qualified name of the Java class that provides the SASL mechanism handler implementation. |
| Default Value | org.opends.server.extensions.AnonymousSASLMechanismHandler |
| Allowed Values | A java class that implements or extends the class(es) : org.opends.server.api.SASLMechanismHandler |
| Multi-valued | No |
| Required | Yes |
| Admin Action Required | The Anonymous SASL Mechanism Handler must be disabled and re-enabled for changes to this setting to take effect |
| Advanced Property | Yes |
| Read-only | No |