-----Original Message-----
snip
In addition, I at least don't know that I understand the PK scenario very well. If I have a certificate for user with DN "X" in my hands, why do I need to locate an LDAP server for DN X? Certainly not to get the cert for that user, which seems like the most obvious reason. If I don't have such a cert, how did I get the user's DN? Isn't it more likely that I know the user's email address and want to get their cert so as to send them S/MIME protected email? Also, I know that cert chains contain
leifj
_______________________________________________ Ldapext mailing list Ldapext@ietf.org https://www1.ietf.org/mailman/listinfo/ldapext