[Date Prev][Date Next] [Chronological] [Thread] [Top]

Names of Object Identifiers

To: ietf-ldapext@netscape.com
Subject: Names of Object Identifiers
From: Steve Kille <S.Kille@isode.com>
Date: Thu, 18 Jun 1998 01:44:19 +0100
Content-id: <15315.898130658.1@isode.com>
Delivered-to: ldapext-archive@critical-angle.com
Resent-date: Wed, 17 Jun 1998 17:46:42 -0700 (PDT)
Resent-from: ietf-ldapext@netscape.com
Resent-message-id: <"HNRsn2.0.qU.lD6Yr"@glacier>
Resent-sender: ietf-ldapext-request@netscape.com

This message sets out an interpretation of the LDAP standards, and a
suggestion for clarification.

Object Classes and Attribute Types in LDAP are identified by an Oject
Identifier and an optional descriptive string.   LDAP recommends that
the string is used in protocol.

In general, when an OID is encountered it is not possible to determine
what sort of thing the OID represents, although you sometimes can.   

We have been testing interoperability with a system which used the
SAME string for an attribute type and an object class.   Both sides of
the testing agreed that this was a bad idea.   

It can be argued that the LDAP specification makes this illegal.   It
is clear to me that it should be illegal.

I suggest that a clarification is added to the next revision of LDAP
(RFF 2252 Section 4.1), that notes that the "descr" string MUST be
unique for an LDAP server.  


Steve Kille

Follow-Ups:
- Re: Names of Object Identifiers
  - From: Mark Wahl <M.Wahl@INNOSOFT.COM>
- Re: Names of Object Identifiers
  - From: Harald Tveit Alvestrand <Harald.Alvestrand@maxware.no>

Prev by Date: Reply to LDAP Access Control
Next by Date: Re: Names of Object Identifiers
Index(es):
- Chronological
- Thread