Roland Hedberg wrote:
>
> On Wed, Dec 20, 2000 at 09:05:22PM +0000, Dan Mosedale wrote:
> > [EMAIL PROTECTED] writes:
> >
> > ldap:///??sub??bindname=cn=Manager%2co=Foo
> >
> > See RFC 2255 for details.
> >
> > Note, however, that this is not yet widely implemented.
>
> Also, note that bindname only allows you to add a DN and no password.
> Hence the only thing you can use it for is unauthenticated bind.
> So whatever bindname you attach it is only usable as information for the
> server to log, not for authenticating to the server.
It can be helpful. A LDAP client could ask for the password for that
specific DN instead of prompting for a "user name" and password.
Just like a HTTP-URL http://user@host/path with user name but
without the password does make sense in some situations.
Most time users are afraid of dealing with complete bind DNs and
sometimes it's not appropriate to allow searching or the tree is too
large for the "smart login" implemented in Netscape Messenger's
address book. Could be handy to make a reference URL including bind
DN.
Ciao, Michael.
