[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: X.509 certificate and its subject name field

To: "'ietf-pkix@xxxxxxxxxx'" <ietf-pkix@xxxxxxxxxx>, "'dpkemp@xxxxxxxxxxxxxx'" <dpkemp@xxxxxxxxxxxxxx>, "'Hal Lockhart'" <hal@xxxxxxxxxxx>
Subject: RE: X.509 certificate and its subject name field
From: Sharon Boeyen <boeyen@xxxxxxxxxxx>
Date: Thu, 5 Jun 1997 13:56:10 -0400
Encoding: 28 TEXT


------------------
Sharon Boeyen                 
Entrust Technologies
mailto:boeyen@entrust.com       Tel: (613) 765-4931
http://www.entrust.com          Fax: (613) 765-3520

         Orchestrating Enterprise Security


>
Hal Lockhart wrote:
>
>Well, in Peter Gutmann's excellent X.509 Style Guide, he specifically says
>multi-value RDNs should *not* be used, citing LDAP support and encoding
>issues as reasons. However, at the end of the section he does say
>"Everything will probably break when you move to LDAP anyway."
>
>
We use LDAP today with multivalued RDNs are have no problems. I'm not
sure what LDAP support or encoding are problems but this works fine and
there are several directory products which we have seen work fine. In
the earlier days there were some directory vendors who had
misinterpreted the standard and not supported the multi-valued RDN
concept but I'm not aware of any remaining products that don't support
>it today.
>

Prev by Date: Globally unique subjectUID?
Next by Date: Re: X.509 certificate and its subject name field
Previous by thread: Re: X.509 certificate and its subject name field
Next by thread: Re: X.509 certificate and its subject name field
Index(es):
- Date
- Thread