[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Special Character Handling in the LDAP DN and entry attributes

To: Wu Miao <wmiao@nortelnetworks.com>
Subject: Re: Special Character Handling in the LDAP DN and entry attributes
From: Michael Ströder <michael@stroeder.com>
Date: Thu, 29 Jul 2004 01:51:07 +0200
Cc: ldap@umich.edu, openldap-software@OpenLDAP.org
In-reply-to: <8B888AAAAB0FD31189590008C79184431F4A7062@zbl6c002.corpeast.baynetworks.com>
References: <8B888AAAAB0FD31189590008C79184431F4A7062@zbl6c002.corpeast.baynetworks.com>
User-agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.7) Gecko/20040616

First note that this should be discussed on the general LDAP mailing list
ldap@umich.edu (Cc:-ed and Reply-To: set).

Wu Miao wrote:


            dn: cn=test\, user11, ou=Expired, o=Bungalo,
[..]
            cn: test, user11


This attribute is of syntax Directory String (1.3.6.1.4.1.1466.115.121.1.15).

            certSubjectDn: cn=This\, is\, a\, test, ou=Expired,
            o=Bungalo, domainComponent=Mission190, domainComponent=com


This attribute should be of syntax Distinguished Name
(1.3.6.1.4.1.1466.115.121.1.12).

mail: "rfc822Name=testuser11@mission180.com"


Looks weird to me since RFC1274 says this should be a RFC822-compliant
e-mail address.

            "dNSName=testuser11.mission180.co
             m" "iPAddress=1.1.1.4"
certSubjectDn is a new attribute I populated in LDAP schema to hold the value of a certificate subject Dn with the cn value is This, is, a, test.


Well, judging from your data example it seems to me that you need something
like draft-ietf-pkix-ldap-pkc-schema (formerly named
draft-klasen-ldap-x509certificate-schema).

Ciao, Michael.

References:
- Special Character Handling in the LDAP DN and entry attributes
  - From: "Wu Miao" <wmiao@nortelnetworks.com>

Prev by Date: Re: Problem with SSL/TLS
Next by Date: Re: LDAPv3: The OpenLDAP/Kerberos/SASL soup (was Kerberos andDIGEST-MD5)
Index(es):
- Chronological
- Thread