You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@directory.apache.org by bu...@apache.org on 2013/04/08 01:46:27 UTC
svn commit: r857669 - in /websites/staging/directory/trunk/content: ./
apacheds/advanced-ug/4.1.2-sasl-authn.html
Author: buildbot
Date: Sun Apr 7 23:46:27 2013
New Revision: 857669
Log:
Staging update by buildbot for directory
Modified:
websites/staging/directory/trunk/content/ (props changed)
websites/staging/directory/trunk/content/apacheds/advanced-ug/4.1.2-sasl-authn.html
Propchange: websites/staging/directory/trunk/content/
------------------------------------------------------------------------------
--- cms:source-revision (original)
+++ cms:source-revision Sun Apr 7 23:46:27 2013
@@ -1 +1 @@
-1465285
+1465515
Modified: websites/staging/directory/trunk/content/apacheds/advanced-ug/4.1.2-sasl-authn.html
==============================================================================
--- websites/staging/directory/trunk/content/apacheds/advanced-ug/4.1.2-sasl-authn.html (original)
+++ websites/staging/directory/trunk/content/apacheds/advanced-ug/4.1.2-sasl-authn.html Sun Apr 7 23:46:27 2013
@@ -157,10 +157,18 @@
<span class="o">*</span> <span class="n">DIGEST</span><span class="o">-</span><span class="n">MD5</span> <span class="p">:</span> <span class="n">Http</span> <span class="n">Digest</span> <span class="n">authentication</span>
<span class="o">*</span> <span class="n">GSSAPI</span> <span class="p">:</span> <span class="n">Kerberos</span> <span class="n">authentication</span>
<span class="o">*</span> <span class="n">EXTERNAL</span> <span class="p">:</span> <span class="n">External</span> <span class="n">authentication</span>
+<span class="o">*</span> <span class="n">NTLM</span> <span class="p">:</span> <span class="n">NTLM</span> <span class="n">authentication</span>
+<span class="o">*</span> <span class="n">GSS</span><span class="o">-</span><span class="n">SPNEGO</span> <span class="p">:</span> <span class="n">The</span> <span class="n">SPNEGO</span> <span class="n">authentication</span>
</pre></div>
<p>It's important to notice that some of those mechanisms are either useless (PLAIN) or obsolete (DIGEST-MD5).</p>
+<p>It's of course possible to modify the list of supported <strong>SASL</strong> mechanisms, by updating the server's configuration. The list of mechanisms is stored as entries under the following <strong>DN</strong> :</p>
+<div class="codehilite"><pre>ou=saslMechHandlers,ads-serverId=ldapServer,ou=servers,ads-directoryServiceId=default,ou=config
+</pre></div>
+
+
+<h2 id="specifications">Specifications</h2>
<p>The SASL specifications are defined by an <a href="http://datatracker.ietf.org/wg/sasl/">IETF Working Group</a> which has published the following proposed standards :</p>
<div class="codehilite"><pre><span class="o">*</span> <span class="p">[</span><span class="n">RFC</span> <span class="mi">4013</span><span class="p">](</span><span class="n">http:</span><span class="sr">//</span><span class="n">www</span><span class="o">.</span><span class="n">ietf</span><span class="o">.</span><span class="n">org</span><span class="sr">/rfc/</span><span class="n">rfc4013</span><span class="o">.</span><span class="n">txt</span><span class="p">)</span> <span class="p">:</span> <span class="n">SASLprep:</span> <span class="n">Stringprep</span> <span class="n">Profile</span> <span class="k">for</span> <span class="n">User</span> <span class="n">Names</span> <span class="ow">and</span> <span class="n">Passwords</span>
<span class="o">*</span> <span class="p">[</span><span class="n">RFC</span> <span class="mi">4422</span><span class="p">](</span><span class="n">http:</span><span class="sr">//</span><span class="n">www</span><span class="o">.</span><span class="n">ietf</span><span class="o">.</span><span class="n">org</span><span class="sr">/rfc/</span><span class="n">rfc4422</span><span class="o">.</span><span class="n">txt</span><span class="p">)</span> <span class="p">:</span> <span class="n">Simple</span> <span class="n">Authentication</span> <span class="ow">and</span> <span class="n">Security</span> <span class="n">Layer</span> <span class="p">(</span><span class="n">SASL</span><span class="p">)</span>