[Date Prev][Date Next] [Chronological] [Thread] [Top]

RE: SASL EXTERNAL

To: "Norbert Klasen" <norbert.klasen@daasi.de>
Subject: RE: SASL EXTERNAL
From: "Howard Chu" <hyc@highlandsun.com>
Date: Tue, 30 Apr 2002 17:46:18 -0700
Cc: <openldap-devel@OpenLDAP.org>
Importance: Normal
In-reply-to: <77686317.1020190528@dino.directory.dfn.de>

> -----Original Message-----
> From: Norbert Klasen [mailto:norbert.klasen@daasi.de]

> --On 28 April 2002 23:00 -0700 Howard Chu <hyc@highlandsun.com> wrote:
>
> >> There are two issues with this certificate:
> >> - It includes an AVA with the pkcs emailAddress attribute, which is not
> >> defined in OpenLDAP's schema. This can be fixed easily. I suggest the
> >> following definition be added to core.schema:
> >
> > The pkcs9 email attribute is already defined in cosine.schema.
> I have this
> > included in my test configs so I never noticed a problem here.
>
> I can't find it in cosine.schema (rev 1.15). All attributes there have an
> oid of 0.9.2342.19200300.100.1.*.

You're right, looks like I modified my copy and forgot about it. My
definition is pretty much the same as yours except I didn't specify the max
length, and I named the attribute "email". OpenSSL names it "email" and
"emailAddress." I guess it would be most convenient in core vs cosine.

  -- Howard Chu
  Chief Architect, Symas Corp.       Director, Highland Sun
  http://www.symas.com               http://highlandsun.com/hyc
  Symas: Premier OpenSource Development and Support

Next by Date: Win2K WinLDAP question
Index(es):
- Chronological
- Thread