[Date Prev][Date Next] [Chronological] [Thread] [Top]

Id without Password

To: ietf-ldapbis <ietf-ldapbis@OpenLDAP.org>
Subject: Id without Password
From: Kathy Dally <kdally@mitre.org>
Date: Wed, 24 Apr 2002 17:29:55 -0400
Organization: The MITRE Corporation

Hi All!

Here's the X.501 statement about the authorization level when a password
is not provided with the identity being checked:

	X.501 1993, 16.4.2.3:

	'For access control purposes, the "simple" authentication level
requires a 	   	 password; THE CASE OF IDENTIFICATION ONLY, WITH NO
PASSWORD SUPPLIED, IS 		 CONSIDERED "NONE".'  [KLD supplied emphasis.]

This helps with the 'no password' case.  However, I did not notice
anything about the 'password in the clear' case.

Regards,
Kathy Dally

begin:vcard 
n:Dally;Kathy
tel;work:+1 703 883 6058
x-mozilla-html:FALSE
org:The MITRE Corp.
version:2.1
email;internet:kdally@mitre.org
adr;quoted-printable:;;7515 Colshire Dr., W650=0D=0A=0D=0A;McLean;VA;22102;USA
fn:Kathy Dally
end:vcard

Prev by Date: Re: ;binary design teams
Index(es):
- Chronological
- Thread