[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: (ITS#7493) slapo-allowed: allowed* attrs are replicated



hyc@symas.com wrote:
> masarati@aero.polimi.it wrote:
>> On 01/15/2013 07:40 PM, michael@stroeder.com wrote:
>>
>>> Please consider the attached patch which sets allowed
>>> "USAGE dSAOperation". This seems to be the most appropriate USAGE compara=
>>> ble
>>> to what's set for entryTTL in slapo-dds.
>>
>> No objection with this patch, since those properties were "arbitrarily"
>> assigned to attributes defined by others to provide software
>> interoperability.  Unless anyone has objections, I'd commit it.
> 
> Go ahead. Please add a comment about the origin of the schema definitions and 
> these interoperability concerns.

These attribute type descriptions were roughly taken from MS AD.

Today I've checked the subschema of a W2K8R2 AD server:
I did not find a single attribute type description with USAGE although there
were attribute types formally defined in RFCs. One example is 'entryTTL'
defined with "USAGE dSAOperation" in RFC 2589 which in fact was co-authored by
Microsoft employees.

The official Microsoft documentation is here [MS-ADA1]:

http://msdn.microsoft.com/en-us/library/cc219752.aspx

Ciao, Michael.