[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: [ldap] Re: Version of Netscape Directory Service portocol

To: <darrylp@earthlink.net>, <ietf-ldapext@netscape.com>, "Naveen C" <CNaveen@novell.com>, <Kurt@OpenLDAP.org>
Subject: Re: [ldap] Re: Version of Netscape Directory Service portocol
From: "Natarajan SK" <sknatarajan@novell.com>
Date: Thu, 18 May 2000 00:10:27 -0600
Cc: <ernest@cs.umb.edu>
Content-disposition: inline

Something still stranger ( or maybe I'm missing something ) is that I used to think operational attributes are not returned in search results unless explicitly stated.  RFC 2252 states rootDSE attributes as operational attributes (which means they shouldn't be returned in ordinary searches).  However in two different ldap v3 servers I've seen that rootDSE attributes (the same which are deemed in rfc 2252 as operational) are returned without explicitly needing to state the attributes. This goes against rfc2251.
So my guess is either the specification is flawed or the implementation of the ldap servers is flawed.
 

S.K.Natarajan
Ph. no. 91-80-572-1856/58 Extn. 2213
Fx 91-80-572-1870


>>> "Darryl C Price" <darrylp@earthlink.net> 05/19/00 10:25AM >>>
rootDSE attributes ARE operational in  that they are used by the server to
administer the directory system itself.  You are right, however.  This is
not explicitly stated in RFC 2251

--Darryl


----- Original Message -----
From: Natarajan SK <sknatarajan@novell.com>
To: Naveen C <CNaveen@novell.com>; <Kurt@OpenLDAP.org>
Cc: <ernest@cs.umb.edu>; <darrylp@earthlink.net>; <ldap@umich.edu>
Sent: Wednesday, May 17, 2000 10:45 PM
Subject: [ldap] Re: Version of Netscape Directory Service portocol


> Hi Kurt,
>                I looked up RFC 2251 and it does not mention the rootDSE
attributes as operational. Also I tried searching for rootDSE attributes and
both Netscape Directory Server and NDS return all rootDSE attributes (except
altServer, which I think does not exist )without my needing to mention
attributes specifically.  Are you sure (most ) rootDSE attributes are
operational.
>
> Regards,
> Natarajan
>
> S.K.Natarajan
> Ph. no. 91-80-572-1856/58 Extn. 2213
> Fx 91-80-572-1870
>
>
> >>> "Kurt D. Zeilenga" <Kurt@OpenLDAP.org> 05/18/00 10:53AM >>>
> At 10:40 PM 5/17/00 -0600, Naveen C wrote:
> >The information server aquires is from an entry called Directory Specific
Entry which is unique for each ldap server.  If supported ldapversions is
removed from the request it will return some more information like
extensions , controls and some other info which is supported by this ldap
server.
>
> Note that most attributes you'll find in the Root DSE are
> operational.  Per LDAPv3 specs, the attributes should only
> be returned if explicitly requested by the client.  Some
> servers don't implement this requirement for the Root DSE,
> but many do.  Your mileage may vary.
>
> Kurt
>
>
> ---
> You are currently subscribed to ldap@umich.edu as:
[sknatarajan@novell.com] 
> To unsubscribe send email to ldap-request@umich.edu with the word
UNSUBSCRIBE as the SUBJECT of the message.
>
>
>

Follow-Ups:
- Re: [ldap] Re: Version of Netscape Directory Service portocol
  - From: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>

Prev by Date: RE: gluing directories with draft-ietf-ldapext-locate-02.txt
Next by Date: Re: [ldap] Re: Version of Netscape Directory Service portocol
Index(es):
- Chronological
- Thread