Re: LDAP outcome entry
SJ Kissane <skissane@gmail.com> Tue, 02 March 2010 05:47 UTC
Return-Path: <skissane@gmail.com>
X-Original-To: apps-discuss@core3.amsl.com
Delivered-To: apps-discuss@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 8D7D028C64D for <apps-discuss@core3.amsl.com>; Mon, 1 Mar 2010 21:47:28 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.598
X-Spam-Level:
X-Spam-Status: No, score=-2.598 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, HTML_MESSAGE=0.001]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id QVl6k0B9gtox for <apps-discuss@core3.amsl.com>; Mon, 1 Mar 2010 21:47:27 -0800 (PST)
Received: from mail-pz0-f176.google.com (mail-pz0-f176.google.com [209.85.222.176]) by core3.amsl.com (Postfix) with ESMTP id 9A88D28C54F for <discuss@apps.ietf.org>; Mon, 1 Mar 2010 21:47:27 -0800 (PST)
Received: by pzk6 with SMTP id 6so694921pzk.10 for <discuss@apps.ietf.org>; Mon, 01 Mar 2010 21:47:24 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:in-reply-to:references :date:message-id:subject:from:to:cc:content-type; bh=OZ4/SMtrMUvmV7E95oD9JhsDe4Ot4OLm0bY7rtitZaw=; b=Aw2dp31WJmg+53Vdt6kclaC1EbuD8fBwEYXlPkSgOcRGMppl23BatKz0za9fueI0cd xNH14i49/Yv73+mlu8+9x8MK/rxQekOmbxhVW1BqQJtL4fipmTrYyXgN4jEjScykFUZg XPAwh/HbxVMbaYnAXap3CV+QZZ5BmNCEQp0PE=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; b=OSJq5bwJz6tuyLpOtkBR9AH3Tfi35BIjti5h19Cr/TfO8++gerJ+pgC6t7IpOgNMsL 8vyhrr0hGkwhBxgKBaEUT9HS6E3/qhL4PrYoNqrjTZYgB8MPtTWQ4x4C5N4Stl+uw6xD h023+3DUzF5SYmB9ckJ5Q4Dtsw7BFMmW8YieY=
MIME-Version: 1.0
Received: by 10.115.84.18 with SMTP id m18mr3193952wal.70.1267508781639; Mon, 01 Mar 2010 21:46:21 -0800 (PST)
In-Reply-To: <4B845A18.5010603@dcrocker.net>
References: <4B82AF43.1090304@dcrocker.net> <4B838DBB.4060804@ninebynine.org> <1629dc8c1002231108s49c3ce70lda09b38eeb6f6a20@mail.gmail.com> <4B845A18.5010603@dcrocker.net>
Date: Tue, 02 Mar 2010 16:46:21 +1100
Message-ID: <82fa66381003012146k50b5c38cy5ce5c3a4724e034b@mail.gmail.com>
Subject: Re: LDAP outcome entry
From: SJ Kissane <skissane@gmail.com>
To: dcrocker@bbiw.net
Content-Type: multipart/alternative; boundary="0016e64ccddcade8e90480cae244"
Cc: discuss@apps.ietf.org, Graham Klyne <GK-lists@ninebynine.org>
X-BeenThere: apps-discuss@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: General discussion of application-layer protocols <apps-discuss.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/apps-discuss>, <mailto:apps-discuss-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/apps-discuss>
List-Post: <mailto:apps-discuss@ietf.org>
List-Help: <mailto:apps-discuss-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/apps-discuss>, <mailto:apps-discuss-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 02 Mar 2010 05:47:28 -0000
On 24 February 2010 09:43, Dave CROCKER <dhc@dcrocker.net> wrote: > 2. LDAP is not (widely) deployed or used across the open Internet, for use > between random pairs. > I'm not sure it ever will. From a policy/legal viewpoint, sharing user identity data between independent organizations has major privacy and security concerns, and LDAP doesn't tend to be a good fit for managing that in practice. In particular it doesn't support ideas like end user opt-in, or letting users know who knows what about them. Newer federation technologies like SAML, Liberty, WS-Federation, etc., tend to be a better fit for that space. > I am not sure whether there are restrictions that should be applied, about > the /type/ of Enterprise that is popular for LDAP use. I'd guess > medium-to-large Enterprises, more than small, but could imagine otherwise. > It's probably not essential to get agreement on this, but the agreement > might solidify agreement about whether LDAP is essential. > I would agree its mainly medium-to-large enterprises - to my knowledge, all major enterprise ERP packages (e.g. Peoplesoft, SAP) support LDAP, all the major enterprise collaboration suites (e.g. Notes/Domino, Exchange, GroupWise, etc.) are based on LDAP, all major operating systems support LDAP for user authentication, etc. But given products like Microsoft Small Business Server, there's likely even many small business running an LDAP without even realising it. cheers Simon Kissane
- Re: LDAP outcome entry Eliot Lear
- Re: LDAP outcome entry Dave CROCKER
- RE: LDAP outcome entry Steve Kille
- LDAP outcome entry Dave CROCKER
- Re: LDAP outcome entry Dave CROCKER
- RE: LDAP outcome entry Steve Kille
- Re: LDAP outcome entry Graham Klyne
- Re: LDAP outcome entry Aaron Stone
- Re: LDAP outcome entry Dave CROCKER
- Re: LDAP outcome entry Peter Saint-Andre
- Re: LDAP outcome entry Graham Klyne
- Re: LDAP outcome entry SJ Kissane