[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
userPassword comment
draft-ietf-ldapbis-user-schema should say that as userPassword
syntax is octet string and has octetExactMatch equality matching,
that applications SHOULD prepare textual strings used as passwords
before storing them in the directory to improve the likelihood
that passwords work as expected. To prepare a textual string,
the application MUST transcode to Unicode, apply SASLprep, and
transfer using UTF-8.
This should be applied to simple bind's password field as well.
Kurt