[Pkg-openldap-devel] Bug#541292: Using an illegal RDN
Howard Chu
hyc at openldap.org
Thu Aug 13 03:03:00 UTC 2009
The specs for LDAP RDNs are defined in X.501(1993) section 9.3. Those specs
requires the attributes used in a multivalued RDN to be distinct. I.e., any
particular attribute can only appear once. The RDN in question
"cn=echo+ipServiceProtocol=tcp+ipServiceProtocol=udp" violates this rule.
Changing the RDN to simply "cn=echo" is probably the best fix. There's no
added value in putting the ipServiceProtocol into the DN, it doesn't make the
entries any easier to lookup (in fact it makes it harder...).
--
-- Howard Chu
CTO, Symas Corp. http://www.symas.com
Director, Highland Sun http://highlandsun.com/hyc/
Chief Architect, OpenLDAP http://www.openldap.org/project/
More information about the Pkg-openldap-devel
mailing list