[Date Prev][Date Next] [Chronological] [Thread] [Top]

RE: How to get schema ?

To: openldap-general@OpenLDAP.org
Subject: RE: How to get schema ?
From: "Salter, Thomas A" <Thomas.Salter@unisys.com>
Date: Mon, 28 Feb 2000 11:04:27 -0500

It should be noted that this reference pertains specifically to the Netscape
implementation.  After a quick reading I noticed several places where it
differs from the RFCs:

1. According to RFC2251 the schema entry need not be "cn=schema".  The
correct way to find it is to read the root DSE or to search with a filter of
"(objectClass=subschema)".

2. The syntax OIDs are not mapped correctly.  1.3.6.1.4.1.1466.115.121.1.15
is DirectoryString and should be used for both cis and ces.  The type of
matching is determined from the equality matching rule in the attribute type
definition.

3. 1.3.6.1.4.1.1466.115.121.1.5 is the Binary syntax, but in RFC2252
'Binary' means Binary Encoding Rules as defined in ASN.1.  The 'bin' syntax
should probably be mapped to 1.3.6.1.4.1.1466.115.121.1.40, Octet String.

4. inetOrgPerson is still only a de facto standard.  Its definition has not
yet made it into an RFC.

 > -----Original Message-----
 > From: mark@mjwilcox.com [mailto:mark@mjwilcox.com]
 > Sent: Friday, February 25, 2000 6:21 PM
 > To: openldap-general@OpenLDAP.org
 > Subject: Re: How to get schema ?
 > 
 > 
 > See my article at
 > http://developer.iplanet.com/viewsource/wilcox_schema.html
 > 
 > Mark
 > 
 > 
 > On 24 Feb 00, at 17:01, jacek czerwinski wrote:
 > 
 > > How to get schema via LDAP (not from file /etc/ldap/.......)
 > > 
 > > 
 > > 
 > > 
 > 
 >

Prev by Date: Re: password policy enforcement
Next by Date: Re: How to get schema ?
Index(es):
- Chronological
- Thread