WG Last call: draft-ietf-ipsec-isakmp-gss-auth-05.txt
Sheela Rowles <srowles@cisco.com> Fri, 31 March 2000 02:51 UTC
Received: from lists.tislabs.com (portal.gw.tislabs.com [192.94.214.101]) by ns.secondary.com (8.9.3/8.9.3) with ESMTP id SAA04517; Thu, 30 Mar 2000 18:51:06 -0800 (PST)
Received: by lists.tislabs.com (8.9.1/8.9.1) id UAA13625 Thu, 30 Mar 2000 20:51:54 -0500 (EST)
From: Sheela Rowles <srowles@cisco.com>
Message-Id: <200003310157.RAA26908@sigma.cisco.com>
Subject: WG Last call: draft-ietf-ipsec-isakmp-gss-auth-05.txt
To: ddp@network-alchemy.com, briansw@microsoft.com
Date: Thu, 30 Mar 2000 17:57:44 -0800
Cc: tytso@valinux.com, srowles@cisco.com, ipsec@lists.tislabs.com
X-Mailer: ELM [version 2.5 PL1]
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Sender: owner-ipsec@lists.tislabs.com
Precedence: bulk
Derrell and Brian (Swander), My understanding is that the isakmp-gss draft is an informational draft, that basically documents one vendor's implementation (Microsoft). As it turns out, we are also implementing the draft (we = Cisco), and so wondered if this should be considered as a future RFC rather than an informational draft. Is there anyone else out there who plans to implement this? In any case, since this is an informational draft (documenting Microsoft's work in this area, the draft needs to be modified to reflect some differences between the draft and Microsoft's current implementation: 1. The draft currently mentions that exchanging an attribute in the first exchange 'may' be done, but as far as I can tell, there is no easy way to interoperate with MS unless this is done. It seems this should be a 'must'. 2. Currently MS has implemented this attribute as a wide character string, so the spec should specify that. My understanding is that MS will be adding the one-byte character strings but this is not true in the current WIN2K release. 3. Finally, the vendor ID doesn't match. MS currently has the vendorid implemented as "GSSAPI" while the spec has a different vendor id specified. thanks. Sheela
- WG Last call: draft-ietf-ipsec-isakmp-gss-auth-05… Sheela Rowles
- Re: WG Last call: draft-ietf-ipsec-isakmp-gss-aut… Paul Hoffman
- Re: WG Last call: draft-ietf-ipsec-isakmp-gss-aut… Sheela Rowles
- Re: WG Last call: draft-ietf-ipsec-isakmp-gss-aut… Paul Hoffman