Overview#
PLAIN SASL Mechanism is a SASL Mechanism which provides a way for clients to perform Authentication to the Directory Server with a username and password. In general, it is very similar to Simple Authentication, with the exception that the client can identify itself with a username rather than a DN. It also provides the ability for the client to specify an alternate authorization ID.
Like Simple Authentication, the PLAIN SASL Mechanism does not provide any form of protection for the user password, so it may be advisable to only use this Authentication method over secure communication channels like those provided by SSL or StartTLS.