RE: [ActiveDir] Maximum distinguished name length?

Tue, 04 Oct 2005 19:08:53 -0700 

See RFC2253 for definition of LDAP RDN. 

Key parts being

   In X.501 [2] the ASN.1 structure of distinguished name is defined as:

       DistinguishedName ::= RDNSequence

       RDNSequence ::= SEQUENCE OF RelativeDistinguishedName

       RelativeDistinguishedName ::= SET SIZE (1..MAX) OF
        AttributeTypeAndValue

       AttributeTypeAndValue ::= SEQUENCE {
        type  AttributeType,
        value AttributeValue }


   When converting from an ASN.1 RelativeDistinguishedName to a string,
   the output consists of the string encodings of each
   AttributeTypeAndValue (according to 2.3), in any order.

   Where there is a multi-valued RDN, the outputs from adjoining
   AttributeTypeAndValues are separated by a plus ('+' ASCII 43)
   character.


Basically, every piece separated by a comma or semicolon (i.e. not quoted or
escaped) is an RDN. 


 

-----Original Message-----
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Chuck Chopp
Sent: Friday, September 30, 2005 9:44 AM
To: [email protected]
Subject: Re: [ActiveDir] Maximum distinguished name length?

Coleman, Hunter wrote:

>>From AD's perspective, the RDN is "Some User" (or "cn=Some User"). It
> does not include anything beyond that, such as OU or container paths. 

OK, I think that clears it up for me.  From the Novell eDirectory point of
view, given that you can have a context handle set to any arbitrary location
in the tree, an RDN is simply the portion of the object's DN that is
relative to the current context.  Think of it as being like having a current
working directory and referring to folders & files via relative file paths
instead of absolute file paths.  AD lacks the concept of a current context
and so I can see how an RDN is defined differently w.r.t. AD.


--
Chuck Chopp

ChuckChopp (at) rtfmcsi (dot) com http://www.rtfmcsi.com

RTFM Consulting Services Inc.     864 801 2795 voice & voicemail
103 Autumn Hill Road              864 801 2774 fax
Greer, SC  29651

"Racing to save lives"
The Leukemia & Lymphoma Society - Team in Training
http://www.active.com/donate/tntsc/tntscCChopp

Do not send me unsolicited commercial email.

List info   : http://www.activedir.org/List.aspx
List FAQ    : http://www.activedir.org/ListFAQ.aspx
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/

List info   : http://www.activedir.org/List.aspx
List FAQ    : http://www.activedir.org/ListFAQ.aspx
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/

Reply via email to