Scheduled Service Change: Oracle Directory Server will Refuse Anonymous Queries
Event:
2020-11-15 13:00:00
Expected Duration:
2020-11-15 13:15:00
Status:
Closed
Brief Description:
Beginning Sunday, November 15, 2020, the Oracle Enterprise Directory will no longer allow anonymous lookups.
User Impact:
User that queries the directory without a Bind ID will receive an error code rather than a result.
Services Affected:
Identity and Access Management Data Services
Full Description:
Beginning Sunday, November 15, 2020, the Oracle Enterprise Directory will no longer allow anonymous lookups. Currently, any user from any system can query this directory. The change will affect all those who perform LDAP lookups to addresses that follow the pattern *.directory.cornell.edu.
Users who do not have a Bind ID and who plan to continue looking up information on the Oracle Enterprise Directory will need to request a Bind ID (username and password) from CIT Identity Management going forward.
Be aware that on Oracle Enterprise Directory test servers, anonymous lookups will be disallowed beginning October 15, 2020.
These changes do not involve lookups on Cornell’s Active Directory service.
If you have concerns or questions, please contact idmgmt@cornell.edu
Users who do not have a Bind ID and who plan to continue looking up information on the Oracle Enterprise Directory will need to request a Bind ID (username and password) from CIT Identity Management going forward.
Be aware that on Oracle Enterprise Directory test servers, anonymous lookups will be disallowed beginning October 15, 2020.
These changes do not involve lookups on Cornell’s Active Directory service.
If you have concerns or questions, please contact idmgmt@cornell.edu
CIT TDX ID:
186174
Timeline of Changes
| Description | Current Status | Date | Time |
|---|---|---|---|
| Beginning Sunday, November 15, 2020, the Oracle Enterprise Directory will no longer allow anonymous lookups. Currently, any user from any system can query this directory. The change will affect all those who perform LDAP lookups to addresses that follow the pattern *.directory.cornell.edu. Users who do not have a Bind ID and who plan to continue looking up information on the Oracle Enterprise Directory will need to request a Bind ID (username and password) from CIT Identity Management going forward. Be aware that on Oracle Enterprise Directory test servers, anonymous lookups will be disallowed beginning October 15, 2020. These changes do not involve lookups on Cornell’s Active Directory service. If you have concerns or questions, please contact idmgmt@cornell.edu | 2020-11-12 | 15:35:02 |