[Date Prev][Date Next]
Re: (ITS#7493) slapo-allowed: allowed* attrs are replicated
- To: openldap-its@OpenLDAP.org
- Subject: Re: (ITS#7493) slapo-allowed: allowed* attrs are replicated
- From: firstname.lastname@example.org
- Date: Wed, 16 Jan 2013 20:10:17 GMT
- Auto-submitted: auto-generated (OpenLDAP-ITS)
Michael Ströder wrote:
> email@example.com wrote:
>> firstname.lastname@example.org wrote:
>>> On 01/15/2013 07:40 PM, email@example.com wrote:
>>>> Please consider the attached patch which sets allowed
>>>> "USAGE dSAOperation". This seems to be the most appropriate USAGE compara=
>>>> to what's set for entryTTL in slapo-dds.
>>> No objection with this patch, since those properties were "arbitrarily"
>>> assigned to attributes defined by others to provide software
>>> interoperability. Unless anyone has objections, I'd commit it.
>> Go ahead. Please add a comment about the origin of the schema definitions and
>> these interoperability concerns.
> These attribute type descriptions were roughly taken from MS AD.
I meant, please add a comment *in the patch* so it will remain in the source code.
> Today I've checked the subschema of a W2K8R2 AD server:
> I did not find a single attribute type description with USAGE although there
> were attribute types formally defined in RFCs. One example is 'entryTTL'
> defined with "USAGE dSAOperation" in RFC 2589 which in fact was co-authored by
> Microsoft employees.
> The official Microsoft documentation is here [MS-ADA1]:
> Ciao, Michael.