Number ###
Subject: LDAP Access policy
Effective Date: ???,??,200?
Only "trusted computers" should have access to the LDAP database, and only for their intended purpose. This policy should define the requirements of a trusted computer for LDAP access. While most trusted computers will be central servers, there may be reason to make LDAP access available to other systems within the institution, in which case the requirements for trusted status must be clearly defined.
Trusted computers should acquire authentication information (passwords, etc) only via secure, encrypted means.
