Comment 4 for bug 1762587

I would like to re-raise this old wishlist item.

The charm complains (enters a blocked state) if ldap-user and/or ldap-password are blank saying the LDAP configuration is incomplete. Specifically, the charm requires ldap-server, ldap-user, ldap-password, and ldap-suffix.

https://github.com/openstack/charm-keystone-ldap/blob/master/src/lib/charm/openstack/keystone_ldap.py#L128

An update to allow anonymous bind seems like it would be as simple as allowing blank values for user and password.

I'll experiment with some charm updates and report back.