Thank you for all these precisations, Now I've the complete scenario.

For what concern the sentence -"showing the value and not being
concerned about
users accessing the value via a completely unencrypted connection over
wire strikes me as odd."-. I can hide the attribute making use of an
eDirectory ACL giving access to this attribute only to the user set on
the Driver security equivalences, right? In this way with an LDAP
browsing noone would be able to see my "secret" attribute

However, thank you for all the explanations

nsanson's Profile:
View this thread: