[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: OpenLDAP 2.0.1, netscape and userSMIMEcertificate

To: Karsten Künne <Karsten.Kuenne@desy.de>
Subject: Re: OpenLDAP 2.0.1, netscape and userSMIMEcertificate
From: Hugo.van.der.Kooij@caiw.nl
Date: Wed, 13 Sep 2000 20:32:06 +0200 (CEST)
Cc: openldap-software@OpenLDAP.org
In-reply-to: <001f01c01da6$478acfb0$d789a983@desy.de>

On Wed, 13 Sep 2000, Karsten Künne wrote:

> I tried to convince netscape to use a 2.0.1 server in order
> to store and retrieve S/MIME-Certificates and I ran into
> some problems. First, netscape was not able to store a
> certificate because the server complained that "binary" is
> not allowed for the userSMIMEcertificate attribute. After
> changing the syntax of this attribute to
> 1.3.6.1.4.1.1466.115.121.1.8 the server and netscape were
> happy and the certificate (or whatever netscape sends there)
> was stored. Now I wonder if there is any reason why the syntax
> 1.3.6.1.4.1.1466.115.121.1.5 has no SLAP_SYNTAX_BINARY flag
> but the other one has. Around line 2296 in schema_init.c
> one can find:
> 
>  {"( 1.3.6.1.4.1.1466.115.121.1.5 DESC 'Binary' " X_BINARY X_NOT_H_R ")",
>          SLAP_SYNTAX_BER, berValidate, NULL, NULL},
> ....
>  {"( 1.3.6.1.4.1.1466.115.121.1.8 DESC 'Certificate' "
>          X_BINARY X_NOT_H_R ")",
>          SLAP_SYNTAX_BINARY|SLAP_SYNTAX_BER, berValidate, NULL, NULL},

Hmm. Do you refer to nsLIData in the schema?

Hugo.

-- 
Hugo van der Kooij; Oranje Nassaustraat 16; 3155 VJ  Maasland
hvdkooij@caiw.nl	http://home.kabelfoon.nl/~hvdkooij/
--------------------------------------------------------------
Quoting this tagline is illegal! (http://www.dtcc.edu/cs/rfc1855.html)

Follow-Ups:
- RE: OpenLDAP 2.0.1, netscape and userSMIMEcertificate
  - From: Karsten Künne <Karsten.Kuenne@desy.de>

References:
- OpenLDAP 2.0.1, netscape and userSMIMEcertificate
  - From: Karsten Künne <Karsten.Kuenne@desy.de>

Prev by Date: Re: Access rights/adding new people
Next by Date: Re: SASL docs?
Index(es):
- Chronological
- Thread