Unset LDAP Initial distinguished name [Updated in Security Center 1.3 and removed in 2.0]

  • Release version: Australia
  • Updated March 12, 2026
  • 1 minute to read

    • Use this property to manage the distinguished name of a LDAP Server record.

    This property controls the distinguished name of a LDAP Server record which is inserted when running an out-of-the-box (OOB) fix script. If it is set to the recommended value of "" or blank, then LDAP server data can be enumerated by a lower privilege user.

    More information

    Attribute Description
    Configuration name glide.ldap.initial.dn
    Configuration type System Properties (/sys_properties_list.do)
    Data type string
    Recommended value blank
    Default value blank
    Category Validation, sanitization, and encoding
    Security risk
    • Severity score: 2.7
    • CVSS score: Low
    • Security risk details: Setting the property value to "" or blank could make LDAP server data accessible to a lower privilege user.
    Dependencies and prerequisites None