Re: Chaining vs Referrals ?? -Reply
KM <goertzek@gateway.wangfed.com> Tue, 27 February 1996 03:23 UTC
Received: from ietf.cnri.reston.va.us by IETF.CNRI.Reston.VA.US id aa14256; 26 Feb 96 22:23 EST
Received: from CNRI.Reston.VA.US by IETF.CNRI.Reston.VA.US id aa14252; 26 Feb 96 22:23 EST
Received: from haig.cs.ucl.ac.uk by CNRI.Reston.VA.US id aa21745; 26 Feb 96 22:23 EST
Received: from bells.cs.ucl.ac.uk by haig.cs.ucl.ac.uk with local SMTP id <g.14070-0@haig.cs.ucl.ac.uk>; Mon, 26 Feb 1996 17:24:46 +0000
Received: from tuna.wang.com by bells.cs.ucl.ac.uk with Internet SMTP id <g.28389-0@bells.cs.ucl.ac.uk>; Mon, 26 Feb 1996 17:21:19 +0000
Received: from mail.wangfed.com (ns.wangfed.com [159.94.10.19]) by tuna.wang.com (8.6.12/8.6.12tf1) with SMTP id MAA04933 for <osi-ds@cs.ucl.ac.uk>; Mon, 26 Feb 1996 12:19:43 -0500
Received: from hfsi.hfsi.com by mail.wangfed.com (1.37.109.4/A.09.00a) id AA08650; Mon, 26 Feb 96 12:10:18 -0600
Received: from [159.94.14.48] by hfsi (BULL 5.61++/B.O.S 02.01) id AA10724; Mon, 26 Feb 96 12:06:16 -0500
Date: Mon, 26 Feb 1996 12:06:16 -0500
Message-Id: <9602261706.AA10724@hfsi>
Sender: ietf-archive-request@IETF.CNRI.Reston.VA.US
From: KM <goertzek@gateway.wangfed.com>
Reply-To: KM <goertzek@wangfed.com>
To: osi-ds@cs.ucl.ac.uk
Subject: Re: Chaining vs Referrals ?? -Reply
It's interesting to note that the US DMS are strongly favouring chaining over referrals. This is for security reasons; they do not want a DUA (vs. the DMS-defined Administrative DUA, or ADUA) to have access to more than one primary DSA. Chaining will ensure that each DUA can communicate only with its designated primary DSA, and will leave it up to the primary DSA to communicate with the next DSA down the chain, etc., to obtain the necessary directory information to satisfy any DUA request. DMS have gone further to define the ADUA, which will be limited to use by a small authorised subset of all users. Only the ADUA will be authorised to modify directory information. All other DUAs will have only lookup authorisation. ------------------------------------------------------ K.M. Goertzel Manager, International Programmes and Special Projects Secure Systems and Services Operation Wang Federal, Inc. 7900 Westpark Drive - MS 700 McLean, Virginia 22102-4299 TEL: 703-827 3914 FAX: 703-827 3161 goertzek@wangfed.com http://www.wangfed.com +---------------------------+ | God is dead. -- Nietzsche | | Nietzsche is dead. -- God | | Ergo: God is Nietzsche. | +---------------------------+
- Chaining vs Referrals ?? -Reply Ed Reed
- Re: Chaining vs Referrals ?? -Reply Colin Robbins
- Re: Chaining vs Referrals ?? -Reply KM
- Re: Chaining vs Referrals ?? -Reply D.W.Chadwick