4 messages in org.perl.perl-ldapRe: Net::LDAP (DirSync control)| From | Sent On | Attachments |
|---|---|---|
| Alexey Kravchuk | Mar 2, 2005 2:38 am | |
| Chris Ridd | Mar 2, 2005 10:56 pm | |
| Alexey Kravchuk | Mar 3, 2005 2:52 am | |
| Mike Jackson | Mar 3, 2005 3:20 am |
| Subject: | Re: Net::LDAP (DirSync control) | |
|---|---|---|
| From: | Alexey Kravchuk (ak...@smr.ru) | |
| Date: | Mar 3, 2005 2:52:24 am | |
| List: | org.perl.perl-ldap | |
On 2/3/05 10:38 am, Alexey Kravchuk <ak...@smr.ru> wrote:
Hi,
Based on the Net::LDAP::Control::Paged, I created a module for DirSync control, allowing to synchronize application data with MS Active Directory via an incremental search:
Good work :-)
Thanks ;-)
Is it possible to include this module (Net::LDAP::Control::ADDirSync) into the Net::LDAP bundle?
The only objection I'd have to this is that they're non-standard and proprietary controls. All the other ones we include are from RFCs, or from Internet drafts that are intended to become RFCs.
So I'd personally prefer if they were in a separate CPAN module for that reason. Maybe there are other CPAN modules for MAD?
But for example Net::LDAP::Control::PersistentSearch is not based on RFC. This control is described by draft-smith-psearch-ldap-01.txt only, not RFC
There is a draft for DirSync control too, for example draft-armijo-ldap-dirsync-01.txt (http://quimby.gnus.org/internet-drafts/draft-armijo-ldap-dirsync-01.txt)
In fact functionally these two controls are quite similarly - both are for data sync. But actually i don't know which LDAP server supports PersistentSearch now. (AFAIK OpenLDAP doesn't support it anymore)
I could not find any AD-specific modules and IMHO it fits well into Net::LDAP bundle (just like Net::LDAP::Control::PersistentSearch ;-) )
Until LCUP (or some other standard technique for LDAP sync) is thoroughly supported by most LDAP servers, I guess the tools are needed allowing to solve this task at least for some specific LDAP servers. Because standartization process can take too long time.
Maybe are there any possibility to include this module in the bundle at least until any standard approach will be appreciated?
Actually I was set a task to discover any ways to sync with a bunch of LDAP servers (AD is the first one only), so i would be pretty happy also if there was any standard approach, allowing to solve the issue at once. But real life is not quite perfect..... yet. ;-)
Cheers,
Chris
Best regards, Alexey Kravchuk.