Pierangelo Masarati wrote: > > We need to be able to deal with dumb clients,
Agreed. That's why I'd vote for just generate more informative messages and return it in errorMessage of the LDAPResult message. So every existing LDAP client displaying / logging errorMessage can immediately provide more information to the user / admin. > Putting this into a(n optional) control seems reasonable, because there > would be no impact if it's not requested. Personally I see not much benefit since most LDAP clients will not implement this. Just my two cents especially since I'm not an OpenLDAP developer. Ciao, Michael.
