> On Oct 4, 2017, at 2:25 AM, Radovan Semancik <[email protected]> > wrote: > > The problem is that there is no standard way how to disable a user in LDAP. > Some LDAP servers have proprietary attributes for this. And some servers > (such as OpenLDAP) have no good way to do this at all. Therefore there the > studio has to support many algorithms and it may even need custom extensions > to support this properly.
I wouldn’t characterize adherence to an expired IETF draft — proprietary. The main problem is LDAPv3 doesn’t include pw policies and the communities (us) have never bothered to ratify an extension as standard. I’d suggest there could be coverage of a limited set of servers. For example fortress supports extensions common to openldap and apacheds and studio could as well. Shawn
