[Date Prev][Date Next] [Chronological] [Thread] [Top]

RE: Inheriting / Cacheing / Replicating policy from superioradministrative areas

To: <Albert.Langer@Directory-Designs.org>
Subject: RE: Inheriting / Cacheing / Replicating policy from superioradministrative areas
From: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>
Date: Wed, 21 Feb 2001 12:15:27 -0800
Cc: "'Ed Reed'" <eer@OnCallDBA.COM>, <ietf-ldup@imc.org>, <ietf-ldapext@netscape.com>
In-reply-to: <001301c09c40$d40c74c0$6628a8c0@nowhere.com>
References: <sa9395ac.068@reed.oncalldba.com>

At 06:59 AM 2/22/01 +1100, Albert Langer wrote:
>I think it should be based directly on X.500 framework for administrative
>areas with whatever
>LDAP style simplifications can be achieved in those aspects that relate to
>operational bindings etc but no departures at all from a common conceptual
>framework as to how policy is inherited.

I concur.  I would prefer to keep the directory's administrative model
simple and as consistent as possible with the X.500 models.  Such
features as policy inheritance can be push into the administration
application space.  I note that one must be careful not to assume
that naming relationships have any particular significance to
the policy in force.

Also, I note (like Albert) that the administrative model in X.500 does
not to address the needs of multiple-master replication and hence may
require significant adaptation.  This may be difficult to engineer
by itself, however it will be much harder to engineer if numerous
unnecessary requirements are added to the mix.

Kurt

References:
- RE: Inheriting / Cacheing / Replicating policy from superioradministrative areas
  - From: "Albert Langer" <Albert.Langer@Directory-Designs.org>

Prev by Date: RE: Inheriting / Cacheing / Replicating policy from superioradministrative areas
Next by Date: RE: Inheriting / Cacheing / Replicating policy from superioradministrative areas
Index(es):
- Chronological
- Thread