[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: LDAP ACLs

To: Paul Leach <paulle@microsoft.com>
Subject: Re: LDAP ACLs
From: prasanta@netscape.com (Prasanta Behera)
Date: Wed, 29 Apr 1998 11:40:46 -0700
Cc: ietf-ldapext@netscape.com
Delivered-to: ldapext-archive@critical-angle.com
Organization: Netscape
References: <00af01bd733f$35ec89b0$0d00000c@paulle-home3>
Resent-date: Wed, 29 Apr 1998 11:45:20 -0700 (PDT)
Resent-from: ietf-ldapext@netscape.com
Resent-message-id: <"sX16F.0.ri1.sKtHr"@glacier>
Resent-sender: ietf-ldapext-request@netscape.com


Paul Leach wrote:

> -----BEGIN PGP SIGNED MESSAGE-----
>
>
>  2. However, there might be several different kinds of ACL formats,
> for different servers. Each format would have an OID associated with
> it.

This will not be a god idea.  If we have n formats,

1) the a server  has to  support all the formats which will be expensive
to manage.
2) The admin has to understand all the formats. If  one wants to one ACL,
the the
    admin hads to modify all of them.
3) Make sure the replicating serevrs have to undestand it.
3)  What about replication issues ?

I thought we agreed @ LA to move forward with one standard format.

/prasanta

References:
- LDAP ACLs
  - From: "Paul Leach" <paulle@microsoft.com>

Prev by Date: Re: LDAP ACLs
Next by Date: Re: LDAP ACLs
Index(es):
- Chronological
- Thread