[Date Prev][Date Next] [Chronological] [Thread] [Top]

LDAP for policy provisioning

To: openldap-devel@OpenLDAP.org
Subject: LDAP for policy provisioning
From: "Kopeikin, Roy A (Roy)" <rkopeikin@lucent.com>
Date: Wed, 9 May 2001 10:24:43 -0500

Hi,
I'm evaluating using LDAPv3 for policy provisioning, vs COPS. Current
LDAP-server use is for local security and VPN policies. Using it for network
wide policy provisioning would mean creating a "policy" on LDAP and
sending/'pushing' it to the right list of network elements that should apply
it.

A colleague suggested that some LDAP servers support persistant searching,
and that one may be able to use this as a push mechanism.  Also, one could
then check a directory flag to tell when the changes are complete. 

Is this practical? Does LDAP client-server normally work [or NOT work]
inside a TCP connection {COPS requirement].

thanks for any comments,

Roy Kopeikin
Lucent Technologies

-

Prev by Date: Re: Ldap Question regarding filtering on ou
Next by Date: Re: LDAP for policy provisioning
Index(es):
- Chronological
- Thread