[Date Prev][Date Next] [Chronological] [Thread] [Top]

RE: SASL EXTERNAL



> -----Original Message-----
> From: Norbert Klasen [mailto:norbert.klasen@daasi.de]

> --On 28 April 2002 23:00 -0700 Howard Chu <hyc@highlandsun.com> wrote:
>
> >> There are two issues with this certificate:
> >> - It includes an AVA with the pkcs emailAddress attribute, which is not
> >> defined in OpenLDAP's schema. This can be fixed easily. I suggest the
> >> following definition be added to core.schema:
> >
> > The pkcs9 email attribute is already defined in cosine.schema.
> I have this
> > included in my test configs so I never noticed a problem here.
>
> I can't find it in cosine.schema (rev 1.15). All attributes there have an
> oid of 0.9.2342.19200300.100.1.*.

You're right, looks like I modified my copy and forgot about it. My
definition is pretty much the same as yours except I didn't specify the max
length, and I named the attribute "email". OpenSSL names it "email" and
"emailAddress." I guess it would be most convenient in core vs cosine.

  -- Howard Chu
  Chief Architect, Symas Corp.       Director, Highland Sun
  http://www.symas.com               http://highlandsun.com/hyc
  Symas: Premier OpenSource Development and Support