[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: LDAPv3 userCertificate store way..

To: Siok Peng <siokpeng@transparity.com>
Subject: Re: LDAPv3 userCertificate store way..
From: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>
Date: Fri, 20 Sep 2002 00:05:46 -0700
Cc: openldap-software@OpenLDAP.org
In-reply-to: <3D8ABA14.2DD9FA5A@transparity.com>

At 11:03 PM 2002-09-19, Siok Peng wrote:
>I heard that the LDAPv3 WG has decided to remove the support for
>;binary.

The LDAPBIS WG (the IETF WG responsible for revising the LDAP
"core" specification) determined that the ;binary feature
should not be included in revised LDAP "core" technical
specification and, instead, be specified as an extension.
Previous to this, LDAPBIS WG determined that PKI schema
should also not be be included in the revised "core"
technical specification and, instead, be specified as an
extension.

This should be viewed as a reorganization of the technical
specification.  (Details are why the reorganization is needed
can be found in the LDAPBIS WG archives.)

>Does it mean, if I want to store certificate into LDAP, I only can use
>userCertificate instead of userCertificate;binary ?

No.  You should continue following the in-force technical
specification, e.g. RFC 3377 and its normative references.

Kurt

References:
- LDAPv3 userCertificate store way..
  - From: Siok Peng <siokpeng@transparity.com>

Prev by Date: Re: program compiling LDAP
Next by Date: Re: ldap_sasl_interactive_bind_s: Unknown authentication method
Index(es):
- Chronological
- Thread