On Tue, Sep 22, 2009 at 12:18 PM, Chris Dukes <[email protected]> wrote: > If management won't say yes to it unless they can pay IBM to support it, > why are you on an OpenBSD mailing list?
What has that got to do with anything? I was just asking a simple question, it's a yes, or no type answer. I was only pointing out my constraints, and if their management refuse to deal with it in the right way, then they get to deal with it in their own silly ways. > Anyways, if your heart is set on LDAP and management has its heart set > on paying IBM... Not really. I was at another place, and they paid entrust $250k to enable "roaming" PKI profiles in version 4.x of their product. Next year, after $company paid them $250k to develop it, Entrust subsequently magically has roaming profiles... This is just back history, but is why I was curious. > Your mission, should you choose not to warm up your resume, is to look *laf*, my resume actually has those pieces in them, but I swore I'll never go back to managing PKIs :) > Then use the magic of ksh, awk, and ldapsearch to generate the files :-). laf > But I'll let you in on a little secret. Most places opt for 'openldap' > as their ldap client implementation because it runs on more platforms. > IBM even packages it for non-support in their linux toolbox for AIX. *sigh* Even our LDAP admins want to move *OFF* IBM's ldap. Different issues here, different issues. -- http://www.glumbert.com/media/shift http://www.youtube.com/watch?v=tGvHNNOLnCk "This officer's men seem to follow him merely out of idle curiosity." -- Sandhurst officer cadet evaluation. "Securing an environment of Windows platforms from abuse - external or internal - is akin to trying to install sprinklers in a fireworks factory where smoking on the job is permitted." -- Gene Spafford learn french: http://www.youtube.com/watch?v=30v_g83VHK4
