Re: [Isms] (D)TLS question (#1): selecting a client certificate to use

To: "Donati Andrew-MGIA0477" <adonati at motorola.com>
Subject: Re: [Isms] (D)TLS question (#1): selecting a client certificate to use
From: Wes Hardaker <wjhns1 at hardakers.net>
Date: Fri, 03 Jul 2009 10:06:44 -0700
Cc: isms at ietf.org
Delivered-to: isms at core3.amsl.com
In-reply-to: <E6658A5CB6378B46A7F9C43757A7397704494BE6 at de01exm63.ds.mot.com> (Donati Andrew-MGIA's message of "Thu, 2 Jul 2009 15:12:50 -0400")
List-archive: <http://www.ietf.org/mail-archive/web/isms>
List-help: <mailto:isms-request@ietf.org?subject=help>
List-id: Mailing list for the ISMS working group <isms.ietf.org>
List-post: <mailto:isms@ietf.org>
List-subscribe: <https://www.ietf.org/mailman/listinfo/isms>, <mailto:isms-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www.ietf.org/mailman/listinfo/isms>, <mailto:isms-request@ietf.org?subject=unsubscribe>
Organization: Sparta
References: <sdprcls3zo.fsf at wes.hardakers.net> <E6658A5CB6378B46A7F9C43757A73977044944E2 at de01exm63.ds.mot.com> <sdy6r72ecc.fsf at wes.hardakers.net> <E6658A5CB6378B46A7F9C43757A7397704494BE6 at de01exm63.ds.mot.com>
User-agent: Gnus/5.110011 (No Gnus v0.11) XEmacs/21.4.21 (linux, no MULE)

>>>>> On Thu, 2 Jul 2009 15:12:50 -0400, "Donati Andrew-MGIA0477" <adonati at motorola.com> said:

DA> If the corresponding row in the tlstmParamsTable is deleted and the
DA> row is automatically removed, I am assuming that setting
DA> tlstmParamsRowStatus to createAndGo(4) or createAndWait(5) returns
DA> an error if the corresponding row in the tlstmParamsTable is not
DA> present.

Good point.  The options are:

1) let the row be created in anticipation of another being created later
   in the snmpTargetPararms table.
2) prohibit it with inconsistentValue, which I agree is the right
   choice.

When deleting, I think it makes sense to auto-remove the column from the
tlstmParamsTable table since it's unlikely you'd want it there in the
future.  But, I don't necessarily think that's true for creation and I
don't see us getting a huge amount of benefit from disallowing the
creation of a row in the tlstmParamsTable table when the row in the
snmpTargetParams doesn't exist.  But you're right, that doesn't feel
consistent either.

Opinions welcome :-)
-- 
Wes Hardaker
Cobham Analytic Solutions

Follow-Ups:
- Re: [Isms] (D)TLS question (#1): selecting a client certificate to use
  - From: Purvis, Ray
- Re: [Isms] (D)TLS question (#1): selecting a client certificate touse
  - From: Randy Presuhn

References:
- [Isms] (D)TLS question (#1): selecting a client certificate to use
  - From: Wes Hardaker
- Re: [Isms] (D)TLS question (#1): selecting a client certificate to use
  - From: Donati Andrew-MGIA0477
- Re: [Isms] (D)TLS question (#1): selecting a client certificate to use
  - From: Wes Hardaker
- Re: [Isms] (D)TLS question (#1): selecting a client certificate to use
  - From: Donati Andrew-MGIA0477

Prev by Date: Re: [Isms] (D)TLS question (#1): selecting a client certificate to use
Next by Date: Re: [Isms] (D)TLS question (#1): selecting a client certificate touse
Previous by thread: Re: [Isms] (D)TLS question (#1): selecting a client certificate to use
Next by thread: Re: [Isms] (D)TLS question (#1): selecting a client certificate touse
Index(es):
- Date
- Thread

Re: [Isms] (D)TLS question (#1): selecting a client certificate to use

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.