📄 rfc1617.txt
字号:
RFC 1617 Naming and Structuring Guidelines for X.500 May 1994
4.2.1 Languages other than English
Many countries have more than one national language and a world-wide
Directory must be able to support non-English-speaking users.
Until the standard provides a solution for this problem it is
possible to make use of multi-valued attributes to specify a value
not only in the local languages but also in English.
In particular the friendlyCountryName, stateOrProvinceName and
localityName attributes should use the most often used translations
of its original value to increase the chance for successful searches
also for users with a foreign language. Other attributes like
description, organizationName and organizationalUnitName attributes
should provide multi-lingual values where appropriate.
The drawback of this solution is, that the user interfaces present
much redundant information because they are not able to know the
language of the values and make an automatic selection.
Note: The sequence of multi-valued attribute values in an entry
cannot be defined. It is always up to the DSA to decide on
which order to store them and return them as results, and
to the DUA to decide on which order to display them.
4.2.2 Transliteration
What measures can be taken to make sure all users are able to read an
attribute, when a value uses one of the special characters from the
T.61 character set? An interim solution is transliteration as used in
earlier days with the typewriters, where e.g., the German 'a' with
umlaut is written as 'ae'. Transliteration is not necessarily unique
since it is dependent on the language, English speakers transliterate
the 'a' with umlaut just to an 'a'. However, it is an improvement
over just using the T.61 value since it may not be possible to
display such a value at all. Whenever an attribute needs a character
not in PrintableString and the attribute syntax allows the use of the
T.61 character set, it is recommended that the attribute should be
supplied as multi-valued attribute both in T.61 string and in a
transliterated PrintableString notation.
4.3 Access control
An entry's object class attribute, and any attribute(s) used for
naming an entry are of special significance and may be considered to
be "structural". Any inability to access these attributes will often
militate against successful querying of the Directory. For example,
user interfaces typically limit the scope of their searches by
RARE Working Group on Network Applications Support (WG-NAP) [Page 15]
RFC 1617 Naming and Structuring Guidelines for X.500 May 1994
searching for entries of a particular type, where the type of entry
is indicated by its object class. Thus, unless the intention is to
bar public access to an entry or set of entries, the object class and
naming attributes should be publicly readable.
4.4 Selected Attributes
The section lists attributes together with a short description what
they should be used for and some examples. [6] The source of the
attributes is given in brackets.
Note that due to national legal restrictions on privacy issues it
might be forbidden to use certain attributes or that the search on
them is restricted. [7]
4.4.1 Personal Attributes
commonName [X.520]
It is proposed that pilots should ignore the standard's
recommendations on storing personal titles, and letters indicating
academic and professional qualifications within the commonName
attribute, as this overloads the commonName attribute. A
personalTitle attribute has already been specified in the COSINE
and Internet Schema, and another attribute could be specified for
information about qualifications.
The choice of a name depends on the culture as discussed in
section 3.4. When a commonName is selected as (part of) a RDN the
most often used form of the name should be selected. A firstname
should never be supplied only as an initial (unless, of course,
the source data does not include forenames). It is very important
to have its full value in order to be able to distinguish between
two similar entries. Sets of initials should not be concatenated
into a single "word", but be separated by spaces and/or "."
characters.
Format: Firstname [Initials] Lastname
Example: Steve Kille
Stephen E. Kille
S.E. Kille
RARE Working Group on Network Applications Support (WG-NAP) [Page 16]
RFC 1617 Naming and Structuring Guidelines for X.500 May 1994
The use of 'Lastname Firstname' is deprecated as explained in
section 3.4.
favouriteDrink [RFC 1274]
The intention of this attribute is that it provides at least one
benign attribute which any user can create or modify, given a
suitable user interface, without having the unfortunate impact on
the directory service that follows from modifying an attribute
such as an e-mail address or telephone number.
Example: Pure Crystal Water
organizationalStatus [RFC 1274]
The Organisational Status attribute type specifies a category by
which a person is often referred to in an organisation. Examples
of usage in academia might include undergraduate student,
researcher, lecturer, etc.
A Directory administrator should consider carefully the
distinctions between this and the title and description
attributes.
Example: undergraduate student
personalTitle [RFC 1274]
The usually used titles, especially academic ones. Excessive use
should be avoided.
Example: Prof. Dr.
roomNumber [RFC 1274]
The room where the person works, it will mostly be locally defined
how to write the room number, e.g., Building Floor Room.
Example: HLW B12
secretary [RFC 1274]
The secretary of the person. This is the Distinguished Name (DN)
of the secretary.
Example: CN=Beverly Pyke, O=ISODE Consortium, C=GB
RARE Working Group on Network Applications Support (WG-NAP) [Page 17]
RFC 1617 Naming and Structuring Guidelines for X.500 May 1994
surname [X.520]
Like with commonName it is a matter of culture what to use for
surname in case of a noble name, e.g., de Stefani, von Gunten.
Example: Kille
title [X.520]
Title describing the position, job title or function of an
organisational person.
Example: Manager - International Sales
userId [RFC 1274]
When an organisation has centrally managed user ids, it might make
sense to include it into the entry. It might also be used to form
a unique RDN for the person.
Example: skille
userPassword [X.520]
The password of the entry which allows the modification of the
entry, provided that the access control permits it. The password
should not be the same as any system password, unless it is sure
that nobody can read it. With the current implementations this is
mostly not guaranteed.
Example: 8kiu8z7e
4.4.2 Organisational Attributes
associatedDomain [RFC 1274]
The Internet domain name for an organisation or one of its units.
Example: isode.com
businessCategory [X.520]
Type of business an organisation, an organisational unit or
organisational person is involved in. The values could be chosen
from a thesaurus.
Example: Software Development
RARE Working Group on Network Applications Support (WG-NAP) [Page 18]
RFC 1617 Naming and Structuring Guidelines for X.500 May 1994
organizationName [X.520]
The name of the organisation. The value for the RDN should be
chosen according to section 3.3. Additional names like
abbreviations should be used for better search results.
Example: Uni Lausanne
Universite de Lausanne
Universit\c2e Lausanne (with a T.61 encoded umlaut)
University of Lausanne
unil
organizationalUnitName [X.520]
The name of a part of the organisation. The value for the RDN
should be chosen according to section 3.3. Additional names like
abbreviations should be provided for better search results.
Example: Institut fuer Angewandte Mathematik
Mathematik
iam
roleOccupant [X.520]
The person(s) in that role. This is the Distinguished Name of the
entry of the person(s).
Example: CN=Beverly Pyke, O=ISODE Consortium, C=GB
searchGuide [X.520]
The currently available DUAs make no use this attribute. It seems
that it is not powerful enough for real usage. Experience is
needed before being able to give recommendations on how to
configure it.
4.4.3 Local Attributes
localityName [X.520]
Name of the place, village or town with values in local and other
languages as useful.
Example: Bale
B\c3ale (with a T.61 encoded accented character) Basel
Basilea
Basle
RARE Working Group on Network Applications Support (WG-NAP) [Page 19]
RFC 1617 Naming and Structuring Guidelines for X.500 May 1994
stateOrProvinceName [X.520]
Name of the canton, county, department, province or state with
values in local and other languages as useful. If official and
commonly used abbreviations exist for the states, they should be
supplied as additional values
Example: Ticino
Tessin
TI
4.4.4 Miscellaneous Attributes
audio [RFC 1274]
The audio attribute uses a u-law encoded sound file as used by the
"play" utility on a Sun 4. According to RFC 1274 it is an interim
format. It may be useful to listen to the pronunciation of a name
which is otherwise unknown.
description [X.520]
A short informal explanation of special interests of a person or
organisation. Overlap with businessCategory, organizationalStatus
and title should be avoided.
Example: Networking, distributed systems, OSI, implementation.
friendlyCountryName [RFC 1274]
The friendlyCountryName attribute type specifies names of
countries in human readable format. Especially the country name as
used in the major languages should be included as additional
values to help foreign users.
jpegPhoto [RFC 1488] [8]
A colour or grayscale picture encoded according to JPEG File
Interchange Format (JFIF). Thanks to compression the size of the
pictures is moderate. For persons it may show a portrait, for
organisations the company logo or a map on how to get there.
photo [RFC 1274]
The photo attribute is a b/w G3 fax encoded picture of an object.
The size of the photo should be in a sensible relation to the
informational value of it. This attribute will be replaced by
jpegPhoto.
RARE Working Group on Network Applications Support (WG-NAP) [Page 20]
RFC 1617 Naming and Structuring Guidelines for X.500 May 1994
seeAlso [X.520]
Reference to another closely related entry in the DIT, e.g., from
a room to the person using that room. It is the Distinguished Name
of the entry.
Example: CN=Beverly Pyke, O=ISODE Consortium, C=GB
4.4.5 MHS Attributes
mhsORAddresses [X.411]
The attribute uses internally an ASN.1 structure. The string
notation used for display purposes is implementation dependent.
This attribute is especially useful for an integrated X.400 user
agent since it gets the address in a directly usable format.
rfc822mailbox [RFC 1274]
E-Mail address in RFC 822 notation
Example: s.kille@isode.com
textEncodedORAddress [RFC 1274]
X.400 e-mail address in string notation. The F.401 notation should
be used. This attribute shall disappear once the majority of the
DUAs support the mhsORAddresses attribute. The advantage of the
latter attribute is, that a configurable DUA could adjust the
syntax to the one needed by the local mailer, where
textencodedORAddress is just a string which will mostly have a
different syntax than the mailer expects.
Example: G=thomas; S=lenggenhager; OU1=gate; O=switch; \
P=switch; A=arcom; C=ch;
4.4.6 Postal Attributes
postalAddress [X.520]
The full postal address (but not including the name) in
international notation, with up to 6 lines with 30 characters
each.
Example: SWITCH
Limmatquai 13
CH-8001 Zurich
RARE Working Group on Network Applications Support (WG-NAP) [Page 21]
⌨️ 快捷键说明
复制代码
Ctrl + C
搜索代码
Ctrl + F
全屏模式
F11
切换主题
Ctrl + Shift + D
显示快捷键
?
增大字号
Ctrl + =
减小字号
Ctrl + -