Open Source X.500 Directory Projects?

DangerTenor asks: "The United States Government is standing up a Bridge Certificate Authority to enable PKI Interoperability between different agencies (gov't and non-gov't). The PKI currently relies on the use of either meta-directory products or X.500 DSP Chaining in order to pass certificates and CRLs between directories. OpenLDAP doesn't fit the bill because it doesn't support chaining. Does anyone know of open source projects focused on full X.500 directory implementation, or on meta-directory capabilities?"

ISODE/quipu

[sohp]

A couple of search terms that you'd never come up with if you weren't already steep in the the arcane x.500 world: ISODE and quipu.

Most of this stuff comes out of and is maintained in Europe. As the RFC 1330 says,
"The ISODE is not proprietary, but it is not in the public
domain. This was necessary to include a "hold harmless"
clause in the release. The upshot of all this is that anyone
can get a copy of the release and do anything they want with
it, but no one takes any responsibility whatsoever for any
(mis)use."

You can still find the latest downloads via FUNET.

Be aware, this stuff is a major effort to compile and get working. It's big and complex, but well documented. Have fun, and let me know when you get dish -user "@c=$(COUNTRY)@o=ORG@cn=Manager" to give you a prompt.