[Date Prev][Date Next] [Chronological] [Thread] [Top]

RE: Issues with current authmeth draft.

To: "Ramsay, Ron" <Ron.Ramsay@ca.com>
Subject: RE: Issues with current authmeth draft.
From: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>
Date: Sun, 11 May 2003 23:03:52 -0700
Cc: "Mark Ennis" <mark.ennis@adacel.com>, <ietf-ldapbis@OpenLDAP.org>
In-reply-to: <1395B4B334FCC143B36AF788E68B63810EC3C3@ausyms21.ca.com>

At 10:09 PM 5/11/2003, Ramsay, Ron wrote:
>I find this a bit hard to deal with. We are authenticating to a directory, aren't we? I remember quite an extensive discussion once about how the user name in the simple bind alternative related to a user entry. At that time it was pointed out the X.500 requires it to be the 'distinguished' name of an entry. This actually precludes there being no entry and also precludes the name being an alias.

I note that your points are made with respect to simple method
while my points were made with respect to the SASL method.

>Has LDAP jettisoned the X.500 model?

I would say no.  LDAP supports, in addition to X.500-based
mechanisms, many mechanisms which are not specific to X.500
nor LDAP, such as DIGEST-MD5.

Kurt

References:
- RE: Issues with current authmeth draft.
  - From: "Ramsay, Ron" <Ron.Ramsay@ca.com>

Prev by Date: RE: Issues with current authmeth draft.
Next by Date: Re: Issues with current authmeth draft.
Index(es):
- Chronological
- Thread