Chapter 8. Defining Functions for Authentication

This chapter explains how to write a plug-in function to bypass or replace the standard function for authentication with your own function.

8.1. Understanding Authentication Methods

Authentication methods for LDAP is described in RFC 4513, available at http://www.ietf.org/rfc/rfc4513.txt.

Two methods that you can use to authenticate clients are simple authentication and SASL authentication:

Simple authentication is described in RFC 4513, available at http://www.ietf.org/rfc/rfc4513.txt.
Simple authentication provides minimal facilities for authentication. In the simple authentication method, clients send a DN and password to the server for authentication. The server compares the password sent by the client against the password stored in the client's directory entry.
Simple Authentication and Security Layer (SASL) is described in RFC 4422, which you can find at http://www.ietf.org/rfc/rfc4422.txt.
SASL provides the means to use mechanisms other than simple authentication and TLS to authenticate to the Directory Server.

Where did the comment section go?

Red Hat's documentation publication system recently went through an upgrade to enable speedier, more mobile-friendly content. We decided to re-evaluate our commenting platform to ensure that it meets your expectations and serves as an optimal feedback mechanism. During this redesign, we invite your input on providing feedback on Red Hat documentation via the discussion platform.

Log in to Your Red Hat Account

Red Hat Account

Customer Portal

Select Your Language

Infrastructure and Management

Cloud Computing

Storage

JBoss Development and Management

JBoss Integration and Automation

Mobile

Services

Tools

Red Hat Product Security Center

Security Updates

Resources

Customer Portal Community

Customer Events

Stories

Chapter 8. Defining Functions for Authentication

8.1. Understanding Authentication Methods

Where did the comment section go?