LDAPWiki: Proxied Authorization Control

Overview#

Proxied Authorization Control is defined in RFC 4370 allows a client to request that an operation be processed under a provided authorization identity AUTH instead of as the current authorization identity associated with the connection.

Support for the Proxied Authorization Control is indicated by the presence of the Object Identifier (OID) "2.16.840.1.113730.3.4.18" in the supportedControl attribute within the rootDSE

More Information#

There might be more information for this subject on one of the following:

2.16.840.1.113730.3.4.18
AuthorizationID
Best Practices for LDAP Security
Glossary Of LDAP And Directory Terminology
LDAP Extensions and Controls Listing
RFC 4370
SupportedControl