[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Maximum uidNumber (posix / ldap).



Alejandro Leyva wrote:
Hi all, we are looking at the maximum uidNumber, we need to know the
maximum allowed uidNumber for LDAP / POSIX accounts.

The schema definition for uidNumber says that it is defined with
syntax 1.3.6.1.4.1.1466.115.121.1.27, which is an LDAP number /
integer, in http://www.zytrax.com/books/ldap/apa/types.html#numbers
the range is defined as 2,147,483,648 to 2,147,483,647, did somebody
know if  this range is common to LDAP and POSIX? Could we have a user
with uidNumber 2,147,483,646 without any problem?

Thanks in advance.
No limit, per RFC 4517,  chap. 3.3.16 :

3.3.16.  Integer

  A value of the Integer syntax is a whole number of *unlimited
  magnitude*.  The LDAP-specific encoding of a value of this syntax is
  the optionally signed decimal digit character string representation
  of the number (for example, the number 1321 is represented by the
  character string "1321").  The encoding is defined by the following
  ABNF:

     Integer = ( HYPHEN LDIGIT *DIGIT ) / number

  The <HYPHEN>, <LDIGIT>, <DIGIT>, and <number> rules are defined in
  [RFC4512].

  The LDAP definition for the Integer syntax is:

     ( 1.3.6.1.4.1.1466.115.121.1.27 DESC 'INTEGER' )

  This syntax corresponds to the INTEGER ASN.1 type from [ASN.1].



Now, check that against your favorite LDAP server.

Hope it helps...


--
--
cordialement, regards,
Emmanuel Lécharny
www.iktek.com
directory.apache.org