The "<>" characters are used in a DN to implement platform-specific DN
syntaxes. Microsoft uses it for implementing the "GUID" and "SID" DN
syntaxes, which look like this:
<GUID=f2c76527-dbb5-4826-94e4-488743d82b69>
<SID=S-1-427139602-4143570898-3002774972-1124764024-1874728375-2129772970>
These can be used interchangeably in LDAP with the "normal" DN, as they are
just different versions of the same thing.
It may be possible to escape these characters by using the hex value, but I
think you would be best off if you didn't include them at all. You will
just be opening yourself up to a world of programming misery when you have
to deal with the objects you have created. Run away! :)
Joe K.
----- Original Message -----
From: Fowler, Otto (GE Indust, GE Fanuc)
To: ActiveDir@mail.activedir.org
Sent: Tuesday, August 15, 2006 1:15 PM
Subject: [ActiveDir] use of < > in DN and CN
Is the use of < and > restricted/illegal in AD?
Even escaped there are attribute errors with ldifde.
Thanks
List info : http://www.activedir.org/List.aspx
List FAQ : http://www.activedir.org/ListFAQ.aspx
List archive: http://www.activedir.org/ml/threads.aspx
