...
- Connecting to LDAP is referred to as binding.
- You can bind to LDAP anonymously (without using any credentials)
- This only gets you public information for faculty and staff. No students.
- This is the only time you should connect in cleartext to port 389
- You can bind to LDAP using a special DN
- You must request a special DN if you wish to access students or other non-public information
- Always bind using secure LDAP over port 636.
- Note: (need to verify this) under certain circumstances, a failed LDAP authentication defaults to an anonymous bind, so your app may not be getting all the attributes it is expecting.
Using LDAP to verify a UH username and password
...