Overview#

The Simple Authentication and Security Layer (SASL) RFC 4422 is an Authentication Method for adding authentication support to connection-based protocols.

To use the Simple Authentication and Security Layer specification, a protocol includes a command for identifying and authenticating a user to a server and for optionally negotiating a security layer for subsequent protocol interactions. The command has a required argument identifying a SASL Mechanisms.

SASL Mechanisms are named by strings, from 1 to 20 characters in length, consisting of upper-case letters, digits, hyphens, and/or underscores. SASL Mechanisms names must be registered with the IANA Registry Simple Authentication and Security Layer (SASL) Mechanisms.

Procedures for registering new SASL mechanisms are described in RFC 4422.

SASL Mechanisms names starting with "GS2-" are reserved for SASL Mechanisms which conform to RFC 5801.

Registration procedures for SASL mechanism names starting with "SCRAM-" are defined in RFC 7677.!! More Information There might be more information for this subject on one of the following:

• Authentication ID
• Bind Authentication Method
• CRAM-MD5 SASL Mechanism
• DIGEST-MD5
• Digest SSP
• Glossary Of LDAP And Directory Terminology
• Kerberos
• LDAP Authentication Methods
• LDAP Result Codes
• LDAP Server Standards and Specifications
• LDAP_SASL_BIND_IN_PROGRESS
• NMAS
• NMAS_LOGIN
• Negotiate SSP
• NovellS Challenge Response System
• PLAIN SASL Mechanism
• Quality of Protection
• RFC 2831
• RFC 4422
• SASL
• SASL EXTERNAL
• SPNEGO
• Salted Challenge Response Authentication Mechanism
• Simple and Protected GSSAPI Negotiation Mechanism