@techreport{bartz-hyperdrive-ldap-rbac-schema-00,
    number =    {draft-bartz-hyperdrive-ldap-rbac-schema-00},
    type =      {Internet-Draft},
    institution =   {Internet Engineering Task Force},
    publisher = {Internet Engineering Task Force},
    note =      {Work in Progress},
    url =       {https://datatracker.ietf.org/doc/draft-bartz-hyperdrive-ldap-rbac-schema/00/},
    author =    {Larry Bartz},
    title =     {{LDAP Schema for Role Based Access Control}},
    pagetotal = 17,
    year =      1997,
    month =     oct,
    day =       14,
    abstract =  {Role Based Access Control (RBAC) is an authorization strategy in which an entity's permission to access and manipulate targeted resources is determined by the entity's role or function within a certain organizational context. RBAC's principal motivation is to streamline security policy administration. Many discrete authoriza- tions can be aggregated within a defined role. One or many roles may be assigned or attributed to individuals. This draft describes LDAP object classes and attributes which support RBAC. Adoption of this schema across multiple LDAP implementations will enable RBAC intero- perability among heterogeneous underlying directory services.},
}