This page provides a listing of a number of LDAP-related specifications that are defined in Internet Drafts. Whenever possible, the most recently-published revision of the draft is provided.

Note that some of these drafts are still in active development and may not be considered stable. Other drafts are expired without having ever being promoted to an RFC. However, some LDAP clients and/or servers may have implemented support for some of these drafts. A list of LDAP-related RFCs may be found here.

• draft-apurva-ldap-query-containment-01: Schema to Support Query Containment in LDAP Directories
  Expiration Date: November 6, 2003

• draft-armijo-ldap-control-error-03: The LDAP controlError Result Code
  Expiration Date: September 2002

• draft-armijo-ldap-syntax-00: Active Directory Syntaxes
  Expiration Date: July 1999

• draft-armijo-ldap-treedelete-02: Tree Delete Control
  Expiration Date: February 2001

• draft-bannister-dbis-automounter-06: Directory-Based Information Services: Automounter
  Expiration Date: February 20, 2016

• draft-bannister-dbis-custom-04: Directory-Based Information Services: Custom Maps
  Expiration Date: January 25, 2016

• draft-bannister-dbis-devices-05: Directory-Based Information Services: Devices
  Expiration Date: January 25, 2016

• draft-bannister-dbis-hosts-07: Directory-Based Information Services: Hosts, Networks and Services
  Expiration Date: January 25, 2016

• draft-bannister-dbis-mapping-07: Directory-Based Information Services: Mapping Objects
  Expiration Date: January 25, 2016

• draft-bannister-dbis-netgroup-05: Directory-Based Information Services: Netgroups and Netservices
  Expiration Date: January 25, 2016

• draft-bannister-dbis-passwd-06: Directory-Based Information Services: Users and Groups
  Expiration Date: January 25, 2016

• draft-bartz-hyperdrive-ldap-rbac-schema-00: LDAP Schema for Role Based Access Control
  Expiration Date: April 21, 1998

• draft-behera-ldap-password-policy-11: Password Policy for LDAP Directories
  Expiration Date: August 26, 2022

• draft-byrne-ldap-alias-00: Use of Aliases within LDAP
  Expiration Date: October 20, 1998

• draft-chu-ldap-kdc-schema-00: An LDAP Schema for Kerberos KDC Information
  Expiration Date: April 18, 2010

• draft-chu-ldap-ldapi-00: Using LDAP Over IPC Mechanisms
  Expiration Date: September 1, 2007

• draft-chu-ldap-logschema-00: A Schema for Logging the LDAP Protocol
  Expiration Date: November 4, 2006

• draft-chu-ldap-xordered-00: Ordered Entries and Values in LDAP
  Expiration Date: November 4, 2006

• draft-coretta-oiddir-radit-00: The OID Directory: The RA DIT
  Expiration Date: August 27, 2024

• draft-coretta-oiddir-radsa-00: The OID Directory: The RA DSA
  Expiration Date: August 27, 2024

• draft-coretta-oiddir-radua-00: The OID Directory: The RA DUA
  Expiration Date: August 27, 2024

• draft-coretta-oiddir-roadmap-00: The OID Directory: A Technical Roadmap
  Expiration Date: August 27, 2024

• draft-coretta-oiddir-schema-01: The OID Directory: The Schema
  Expiration Date: August 27, 2024

• draft-coretta-x660-ldap-08: Lightweight Directory Access Protocol (LDAP) Procedures and Schema Definitions for the Storage of X.660 Registration Information
  Expiration Date: July 23, 2022

• draft-cridland-sasl-hexa-00: The Hash Exchange Authentication SASL Mechanism
  Expiration Date: August 30, 2007

• draft-cridland-sasl-tls-sessions-00: On the use of TLS Session resumption and SASL EXTERNAL
  Expiration Date: May 12, 2008

• draft-dawkins-ldapext-subnot-02: Subscription/Notification for Lightweight Directory Access Protocol (LDAP)
  Expiration Date: June 2, 2010

• draft-elliott-ldapext-spdna-recrecs-00: Recommendations for Recording Directory Access Data
  Expiration Date: May 2001

• draft-findlay-ldap-groupofentries-00: The LDAP groupOfEntries object class
  Expiration Date: March 16, 2008

• draft-furuseth-ldap-untypedobject-02: Structural object class ‘namedObject’ for LDAP/X.500
  Expiration Date: December 2006

• draft-good-ldap-changelog-04: Definition of an Object Class to Hold LDAP Change Records
  Expiration Date: September 2003

• draft-gpaterno-dhcp-ldap-03: DHCP Option for LDAP Directory Services discovery
  Expiration Date: September 2003

• draft-greenblatt-ldap-applusers-00: LDAP Object Class for Application Users
  Expiration Date: January 21, 1998

• draft-greenblatt-ldap-perms-00: Application Defined Permissions for LDAP
  Expiration Date: October 2001

• draft-greenblatt-ldapext-sos-01: Simple Operations on Subtrees (for LDAP)
  Expiration Date: February 8, 2001

• draft-greenblatt-ldapext-style-01: LDAP Extension Style Guide
  Expiration Date: September 2001

• draft-hall-ldap-audit-00: The generalizedAudit object class and the generalizedAuditEvent attribute
  Expiration Date: September 2003

• draft-hall-ldap-idn-00: LDAP Schema Extensions for Internationalized Domain Names
  Expiration Date: January 2004

• draft-hall-ldap-whois-01: The Internet Resource Query Service and the WHOIS Resource Schema
  Expiration Date: August 2002

• draft-hansen-scram-sha256-02: SCRAM-SHA-256 and SCRAM-SHA-256-PLUS SASL Mechanisms
  Expiration Date: April 30, 2015

• draft-haripriya-ldapext-dynamicgroup-01: LDAP: Dynamic Groups for LDAPv3
  Expiration Date: August 2003

• draft-haripriya-ldapext-entryselect-01: EntrySelection control for LDAP modify and delete operations on multiple entries
  Expiration Date: February 25, 2001

• draft-hassler-ldapv3-secparam-00: LDAPv3 Security Parameters
  Expiration Date: September 1, 1998

• draft-hodges-ldapv3-as-00: Lightweight Directory Access Protocol (v3): Applicability Statement
  Expiration Date: December 2000

• draft-howard-gssapi-aead-01: AEAD Modes for Kerberos GSS-API
  Expiration Date: July 10, 2023

• draft-howard-namedobject-01: A Structural Object Class for Arbitrary Auxiliary Object Classes
  Expiration Date: December 1, 2003

• draft-howard-rfc2307bis-02: An Approach for Using LDAP as a Network Information Service
  Expiration Date: February 10, 2010

• draft-ietf-boreham-numsubordinates-01: numSubordinates LDAP Operational Attribute
  Expiration Date: April 19, 2004

• draft-ietf-dhc-ldap-schema-00: LDAP Schema for DHCP
  Expiration Date: December 15, 2001

• draft-ietf-kitten-gss-sanon-01: A Simple Anonymous SASL and GSS-API Mechanism
  Expiration Date: January 6, 2021

• draft-ietf-kitten-password-storage-07: Best practices for password hashing and storage
  Expiration Date: March 31, 2022

• draft-ietf-kitten-sasl-oauth-18: A Set of SASL Mechanisms for OAuth
  Expiration Date: May 29, 2015

• draft-ietf-kitten-scram-2fa-04: Extensions to Salted Challenge Response (SCRAM) for 2 factor authentication
  Expiration Date: September 5, 2024

• draft-ietf-ldapext-acl-model-08: Access Control Model for LDAPv3
  Expiration Date: December 29, 2001

• draft-ietf-ldapext-ldap-c-api-05: The C LDAP Application Program Interface
  Expiration Date: May, 2001

• draft-ietf-ldapext-ldap-java-api-19: The Java LDAP Application Program Interface
  Expiration Date: December 6, 2004

• draft-ietf-ldapext-ldap-java-api-asynch-ext-05: The Java LDAP Application Program Interface Asynchronous Extension
  Expiration Date: September 2000

• draft-ietf-ldapext-ldap-taxonomy-05: A Taxonomy of Methods for LDAP Clients Finding Servers
  Expiration Date: January 2002

• draft-ietf-ldapext-ldapudp-00: Lightweight Directory Access Protocol over UDP/IP
  Expiration Date: November 8, 2001

• draft-ietf-ldapext-ldapv3-dupent-08: LDAP Control for a Duplicate Entry Representation of Search Results
  Expiration Date: September 2002

• draft-ietf-ldapext-ldapv3-vlv-09: LDAP Extensions for Scrolling View Browsing of Search Results
  Expiration Date: June 2003

• draft-ietf-ldapext-locate-08: Discovering LDAP Services with DNS
  Expiration Date: December 5, 2002

• draft-ietf-ldapext-psearch-03: Persistent Search: A Simple LDAP Change Notification Mechanism
  Expiration Date: May 2001

• draft-ietf-ldapext-trigger-01: LDAPv3 Triggered Search Control
  Expiration Date: February 7, 1999

• draft-ietf-ldapext-x509-sasl-03: X.509 Authentication SASL Mechanism
  Expiration Date: August 2000

• draft-ietf-ldup-infomod-08: LDUP Replication Information Model
  Expiration Date: April 30, 2004

• draft-ietf-ldup-model-09: LDAP Replication Architecture
  Expiration Date: April 30, 2004

• draft-ietf-ldup-mrm-02: Mandatory LDAP Replica Management
  Expiration Date: September 2003

• draft-ietf-ldup-protocol-05: The LDUP Replication Update Protocol
  Expiration Date: September 2003

• draft-ietf-ldup-subentry-08: LDAP Subentry Schema
  Expiration Date: October 6, 2001

• draft-ietf-ldup-urp-08: LDUP Update Reconciliation Procedures
  Expiration Date: April 24, 2004

• draft-ietf-ldup-usage-profile-06: General Usage Profile for LDAPv3 Replication
  Expiration Date: March 2004

• draft-ietf-lsd-ldapv3-wp-00: A Minimum LDAPv3 White Pages Schema
  Expiration Date: July 28, 1998

• draft-ietf-roamops-ldap-phonebook-01: An LDAP Schema for Phone Books
  Expiration Date: September 1998

• draft-ietf-sasl-crammd5-10: The CRAM-MD5 SASL Mechanism
  Expiration Date: January 12, 2009

• draft-ietf-sasl-crammd5-to-historic-00: CRAM-MD5 to Historic
  Expiration Date: May 20, 2009

• draft-ietf-svrloc-ldap-scheme-02: The LDAP Service Type
  Expiration Date: December 25, 1999

• draft-just-ldapv3-rescodes-02: LDAPv3 Result Codes: Definitions and Appropriate Use
  Expiration Date: October 2000

• draft-kashi-attr-scoped-query-01: Attribute Scoped Query: control for searching DN-valued multi-value attributes
  Expiration Date: May 2002

• draft-kashi-incremental-00: Incremental Retrieval of Multi-valued Properties
  Expiration Date: November 2002

• draft-knvijay-ldapext-clientcachingproxy-01: The LDAP Client Caching Proxy Model
  Expiration Date: July 17, 2001

• draft-legg-ldap-acm-admin-04: Lightweight Directory Access Protocol (LDAP): Access Control Administration
  Expiration Date: March 3, 2007

• draft-legg-ldap-admin-03: Lightweight Directory Access Protocol (LDAP): Directory Administrative Model
  Expiration Date: March 3, 2007

• draft-legg-ldap-transfer-06: Lightweight Directory Access Protocol (LDAP): Transfer Encoding Options
  Expiration Date: March 21, 2008

• draft-masarati-ldap-deref-00: LDAP Dereference Control
  Expiration Date: May 23, 2009

• draft-masarati-ldap-whatfailed-00: LDAP “What Failed?” Control
  Expiration Date: May 23, 2009

• draft-mcdonald-ldap-printer-schema-13: Lightweight Directory Access Protocol (LDAP): Schema for Printer Services
  Expiration Date: October 30, 2015

• draft-melnikov-ldap-krb-authzid-01: Additional authorization identity syntax for Kerberos-aware Directories
  Expiration Date: May 2007

• draft-melnikov-sasl2-00: Extensible Simple Authentication and Security Layer (SASL)
  Expiration Date: September 11, 2023

• draft-melnikov-scram-2fa-03: Extensions to Salted Challenge Response (SCRAM) for 2 factor authentication
  Expiration Date: November 25, 2021

• draft-melnikov-scram-bis-04: Salted Challenge Response Authentication Mechanism (SCRAM) SASL and GSS-API Mechanisms
  Expiration Date: September 5, 2024

• draft-melnikov-scram-sha-512-04: SCRAM-SHA-512 and SCRAM-SHA-512-PLUS Simple Authentication and Security Layer (SASL) Mechanisms
  Expiration Date: September 5, 2024

• draft-melnikov-scram-sha3-512-04: SCRAM-SHA3-512 and SCRAM-SHA3-512-PLUS Simple Authentication and Security Layer (SASL) Mechanisms
  Expiration Date: September 5, 2024

• draft-moats-ldap-dereference-match-02: Extensible Match Rule to Dereference Pointers
  Expiration Date: June 2000

• draft-natarajan-ldapext-cachedresults-00: The LDAP Caching Model
  Expiration Date: December 2000

• draft-pluta-ldap-srv-side-current-time-match-01: Lightweight Directory Access Protocol (LDAP): Server Side Current Time Matching – Matching Rules and Syntaxes
  Expiration Date: December 25, 2010

• draft-poitou-ldap-schema-update-02: LDAP Schema Update Procedures
  Expiration Date: May 2002

• draft-rajasekaran-kerberos-schema-00: Kerberos version 5 schema for LDAP Directories
  Expiration Date: November 18, 2005

• draft-reitzenstein-kitten-opaque-02: A SASL and GSS-API Mechanism using the asymmetric password-authenticated key agreement OPAQUE
  Expiration Date: July 20, 2023

• draft-rharrison-ldap-framing-profile-00: Profile for Framing LDAPv3 Operations
  Expiration Date: September 21, 2001

• draft-schmaus-kitten-sasl-ht-09: The Hashed Token SASL Mechanism
  Expiration Date: May 11, 2023

• draft-schleiff-ldap-xri-01: LDAP Schema for eXtensible Resource Identifier (XRI)
  Expiration Date: March 23, 2007

• draft-seantek-ldap-pkcs9-08: Lightweight Directory Access Protocol (LDAP) Registrations for PKCS#9
  Expiration Date: May 18, 2018

• draft-sermersheim-ldap-chaining-03: LDAP Control to Specify Chaining Behavior
  Expiration Date: August 24, 2005

• draft-sermersheim-ldap-csn-02: The LDAP Change Sequence Number
  Expiration Date: August 5, 2005

• draft-sermersheim-ldap-distproc-02: Distributed Procedures for LDAP Operations
  Expiration Date: August 26, 2005

• draft-sermersheim-ldap-subordinate-scope-02: Subordinate Subtree Search Scope for LDAP
  Expiration Date: April 4, 2005

• draft-slone-ldap-x500-align-00: Maximizing Alignment Between LDAP and X.500
  Expiration Date: August 23, 2003

• draft-spacek-ldapext-syncrepl-transaction-01: The LDAP Content Synchronization Operation with Transactions
  Expiration Date: May 21, 2016

• draft-srivastava-ldap-mail-00: LDAP Schema for Internet Mail
  Expiration Date: May 1999

• draft-steinback-ldap-mailgroups-00: Using LDAP for SMTP Mailing Lists & Aliases
  Expiration Date: March 1998

• draft-stroeder-hashed-userpassword-values-01: Lightweight Directory Access Protocol (LDAP): Hashed Attribute values for ‘userPassword’
  Expiration Date: September 14, 2013

• draft-stroeder-mailboxrelatedobject-07: Lightweight Directory Access Protocol (LDAP): Auxiliary Object Class ‘mailboxRelatedObject’
  Expiration Date: March 30, 2015

• draft-stroeder-namedobject-01: Lightweight Directory Access Protocol (LDAP): Structural Object Classes for Named Objects
  Expiration Date: July 11, 2013

• draft-vchu-ldap-pwd-policy-00: Password Policy for LDAP Directories
  Expiration Date: May 1999

• draft-vmodi-ldapext-compound-attr-00: Compound Attribute Support in LDAP
  Expiration Date: April 4, 2000

• draft-vmodi-ldapext-proxy-connect-00: LDAP Extensions for Proxy Connection
  Expiration Date: February 3, 2000

• draft-wahl-ldap-adminaddr-05: LDAP Administrators Address Attribute
  Expiration Date: March 9, 2008

• draft-wahl-ldap-p3p-03: P3P Policy Attributes for LDAP
  Expiration Date: June 15, 2007

• draft-wahl-ldap-session-03: LDAP Session Tracking Control
  Expiration Date: November 10, 2007

• draft-wahl-ldap-subtree-source-01: LDAP Subtree Data Source URI Attribute
  Expiration Date: June 15, 2007

• draft-wahl-schema-eupp-attribute-01: Enrolled User Policy Profiles Attribute
  Expiration Date: November 9, 2007

• draft-wahl-schema-rdf-attribute-00: Identity Associated RDF Attribute
  Expiration Date: November 9, 2007

• draft-watts-ldapext-x500-referrals-00: Efficient Referral Chasing in LDAP Directories
  Expiration Date: October 1998

• draft-weltman-ldapv3-proxy-04: LDAP Proxied Authorization Control
  Expiration Date: August 7, 2000

  NOTE: This revision specifies a version of the proxied authorization control that is supported by some directory servers but that has a different OID and value encoding than the proxied authorization control described in RFC 4370.

• draft-whited-kitten-password-storage-04: Best Practices for password hashing and storage
  Expiration Date: November 13, 2020

• draft-wibrown-ldapssotoken-02: Draft LDAP Single Sign On Token Processing
  Expiration Date: August 31, 2017

• draft-wood-ldapext-float-00: Directory string representation for floating point values
  Expiration Date: June 2000

• draft-zeilenga-ldap-dnsref-02: Use of DNS SRV in LDAP Named Subordinate References
  Expiration Date: May 20, 2002

• draft-zeilenga-ldap-grouping-06: LDAP: Grouping of Related Operations
  Expiration Date: November 3, 2003

• draft-zeilenga-ldap-idn-04: International Domain Names and LDAP
  Expiration Date: May 20, 2002

• draft-zeilenga-ldap-managedit-00: The LDAP Manage Directory Information Tree Control
  Expiration Date: August 27, 2006

• draft-zeilenga-ldap-noop-12: The LDAP No-Op Control
  Expiration Date: January 13, 2009

• draft-zeilenga-ldap-passwords-00: Passwords in LDAP
  Expiration Date: September 30, 2008

• draft-zeilenga-ldap-proxy-grp-00: LDAPv3 Proxy Group
  Expiration Date: May 13, 2002

• draft-zeilenga-ldap-relax-03: The LDAP Relax Rules Control
  Expiration Date: January 13, 2009

• draft-zeilenga-ldap-x500-locate-01: Location of LDAP services using Geo-Political Naming
  Expiration Date: December 26, 2001

• draft-zeilenga-sasl-yap-06: SASL Yet Another Password Mechanism
  Expiration Date: November 30, 2009