I have Windows 2008 R2 DC. I allowed anonymous users to bind to LDAP (by following guide http://technet.microsoft.com/en-us/library/cc816788%28v=ws.10%29.aspx ). So my problem is: i would like to setanonymous users read permissions (ASDI edit -> "Default naming context") to all users inhierarchy (CN=Username,OU=Users,OU=somename,DC=domain,DC=com), and I achieved it, but after a while (cca. 30 min) all object under OU=Users ("CN=username","CN=username1",...) (all users) losepreviouslyadded anonymoususer (CN=username->properties->security tab ). All other objectsOU=Users,OU=somename,DC=domain,DC=com security setting are untouched(anonymous user stayed set). I looks like security rules are rewrite after a while. :S
And in a security tab all the users (CN=Username,OU=Users,OU=somename,DC=domain,DC=com)have user everyone who has change password permissions, and even if i remove it comes back after a while (cca.30 min)
