[Date Prev][Date Next] [Chronological] [Thread] [Top]

LDAP authentication and Madman

To: ietf-ldapext@netscape.com
Subject: LDAP authentication and Madman
From: Bruce Greenblatt <bruceg@innetix.com>
Date: Sun, 20 Sep 1998 09:14:46 -0700
Resent-date: Sun, 20 Sep 1998 09:27:54 -0700 (PDT)
Resent-from: ietf-ldapext@netscape.com
Resent-message-id: <"upuHg2.0.kU5.8qI1s"@glacier>
Resent-sender: ietf-ldapext-request@netscape.com

I've got a question about the implementation of the Madman MIB for DSAs
(i.e. RFC 1567) and the new authentication types that have been discussed
recently for LDAP servers (CRAM-MD5 and HTTP digest).  RFC 1567 defines
counters for four different types of authentication:

           dsaAnonymousBinds
                Counter32,
            dsaUnauthBinds
                Counter32,
            dsaSimpleAuthBinds
                Counter32,
            dsaStrongAuthBinds
                Counter32,

It appears to me that the new authentication mechanisms don't fit into any
of these counters.  Should a new MIB that augments the dsaOpsTable be
defined.  Shouldn't the LDAP extensions WG provide some guidance here.  I
guess I'd ask the same question about Kerberos authentication (if I cared
about Kerberos).

Thanks,

Bruce


================================================
Bruce Greenblatt              bruceg@innetix.com
http://www.innetix.com/~bruceg
================================================

Prev by Date: Re: ldap v2/v3 interoperability
Next by Date: Proposals for LDAP/DAP alignment and LDAPV4
Index(es):
- Chronological
- Thread