Hi!
based on the documentation the anonymous bind to the LDAP of the UCS (v.5.2-4) should be disabled by default. And testing the config (on a freshly installed UCS):
ucr get ldap/acl/read/anonymous
returns no as expected.
But scanning the ports with Zenmap shows, that all LDAP ports are open to anonymous bind:
Testing it with an LDAP browser shows that it indeed doesn’t need a bind user.
Is that a bug? And how can I change it to prevent anonymous bind?