Re: people CN
Alan.Young@zh014.ubs.ubs.ch Thu, 26 November 1992 09:39 UTC
Received: from ietf.nri.reston.va.us by IETF.CNRI.Reston.VA.US id aa00875; 26 Nov 92 4:39 EST
Received: from CNRI.RESTON.VA.US by IETF.CNRI.Reston.VA.US id aa00871; 26 Nov 92 4:39 EST
Received: from haig.cs.ucl.ac.uk by CNRI.Reston.VA.US id aa03897; 26 Nov 92 4:39 EST
X400-Received: by mta haig.cs.ucl.ac.uk in /PRMD=uk.ac/ADMD=gold 400/C=gb/; Relayed; Thu, 26 Nov 1992 08:56:28 +0000
Date: Thu, 26 Nov 1992 08:56:28 +0000
X400-Originator: osi-ds-request@cs.ucl.ac.uk
X400-Recipients: non-disclosure:;
X400-MTS-Identifier: [/PRMD=uk.ac/ADMD=gold 400/C=gb/; haig.cs.uc.470:26.10.92.08.56.28]
Priority: Non-Urgent
DL-Expansion-History: osi-ds@cs.ucl.ac.uk ; Thu, 26 Nov 1992 08:56:27 +0000;
Sender: ietf-archive-request@IETF.CNRI.Reston.VA.US
From: Alan.Young@zh014.ubs.ubs.ch
Message-ID: <"7203 Thu Nov 26 09:53:28 1992"@zh014.ubs.ubs.ch>
To: pays@faugeres.inria.fr
Cc: inria-x500@pamir.inria.fr, osi-ds@cs.ucl.ac.uk, wg-nap@rare.nl
In-Reply-To: <722730290.15168.0@faugeres.inria.fr>
Subject: Re: people CN
Phone: +41 1 236 7866
Just to throw in my tuppence worth..., I should like to say that my preferred solution is to use a multi-value RDN. For preference I would use organizationalUnit as the disambiguating attribute, although I accept that it has some of the same problems as already discusses, as I think that I have seen it recommended somewhere else. There will always be exception cases when the disambiguating mecahnism does not use something like arbitrary serial numbers. As Walter mentioned earlier, at UBS we use a serial number on the end of the commonName (just for the ambiguous entries) and this works well enough but, as others have pointed out, gives nothing in the returned list of DNs which will help a user choose the right one. The problem with saying that the DUA should present the user with some other attributes means that these all entries must be read first, which could be significant in an organisation using a flat DIT structure. Our structure, here in Zurich, is: locality=Zuerich@organizationalUnit=xxx@cn=yyy where 'yyy' is unique (using a serial number suffix if necessary) within locality=Zuerich, so one could regard the OU as a disambiguating part of the RDN, and in practice this is useful, and nearly always adequate, for determining the correct selection.. Alan Young.
- people CN pays
- Re: people CN Andrew Waugh
- Re: people CN pays
- Re: people CN Andrew Waugh
- Re: people CN Thomas Lenggenhager
- Re: people CN Ruenzler Walter
- Re: people CN Alan.Young
- Re: people CN Thomas Lenggenhager
- Re: people CN Ruenzler Walter
- Re: people CN Andrew Findlay
- Re: people CN Thomas Lenggenhager
- Re: people CN Christian Huitema
- Re: people CN Andrew Findlay
- Re: people CN Andrew Findlay
- Re: people CN Thomas Lenggenhager
- Re: people CN A.Macpherson
- Re: people CN pays
- Re: people CN Thomas Lenggenhager
- Re: people CN pays
- Re: people CN Tim Howes