Manualshelf

HP-UX Directory Server 8.1 configuration, command, and file reference

ManualsBrandsHP ManualsSoftwareHP-UX Directory Server
191192193194195196197198199200
To learn which SASL mechanisms are supported, search the root DSE. See the -b option in
Table 6-3 “Commonly-used ldapsearch options”.
Table 6-6 SASL options
DescriptionOption
Specifies SASL options. The format is -o saslOption=value. saslOption can have one of six
values:
mech, the SASL authentication mechanism
authid, the user who is binding to the server (Kerberos principal)
authzid, a proxy authorization (ignored by the server because proxy authorization is not
supported)
secProp, the security properties
realm, the Kerberos realm
flags
The expected values depend on the supported mechanism. The -o can be used multiple times to
pass all the required SASL information for the mechanism. For example:
-o "mech=DIGEST-MD5" -o "authzid=test_user" -o "authid=test_user"
-o
There are three SASL mechanisms supported in the HP-UX Directory Server:
CRAM-MD5, described in Table 6-7 “Description of CRAM-MD5 mechanism options”
DIGEST-MD5, described in Table 6-8 “Description of DIGEST-MD5 SASL mechanism
options”
GSSAPI, described in Table 6-9 “Description of GSSAPI SASL mechanism options”
194 Command-line utilities