Fraser Tweedale works on identity management solutions at Red Hat, focusing on X.509. He has just published a blog post titled “A Distinguished Name is not a string” in which he discusses distinguished names (DNs), both in LDAP and X.509 certificates. It describes what DNs are and how to avoid some of the common pitfalls that may arise from the different string representations that equivalent DNs may have.