Reference document

Org
IETF
Pubnum
RFC 2649
Date
1999
Version
Title
An LDAP Control and Schema for Holding Operation Signatures

Applicability

In many environments clients require the ability to validiate the source and integrity of information provided by the directory. This document describes an LDAP message control which allows for the retrieval of digitally signed information. This document defines an LDAP v3 based mechanism for signing directory operations in order to create a secure journal of changes that have been made to each directory entry. Both client and server based signatures are supported. An object class for subsequent retrieval are journal entries is also defined. This document specifies LDAP v3 controls that enable this functionality. It also defines an LDAP v3 schema that allows for subsequent browsing of the journal information.

Responsible Party

Name
NCIA/CES

Status

URI
https://www.ietf.org/rfc/rfc2649.txt

History

Flag Date RFC Version
added 2010-11-13 4-25 5.0
changed 2017-01-14 9-19 10.0
UUID
d6304777-6ea3-40c8-885c-a3f64fbf42bc