hi,
I am using sunone 7.0 webserver. The webserver instance is configured for https and i want to do client authentication for specific resources. I dont want to do any client authentication for the other resources.
I was able to do a complete client auth for my webserver but unable to do the partial client auth.
Hi,
I am trying to authenticate AIX server against a IDS LDAP instance.
The AIX version is 6.1 and TDS client is 6.1.
I configured the secldapclntd using ldap.cfg file and changed /etc/security/user to set SYSTEM=LDAP, registry=LDAP for one user. Below are the ldap.cfg configurations -
... (5 Replies)
Hi All,
I am a newb in this forums. I am a Linux admin and I hope I will get the solution here.
In my company I have setup AD and I can authenticate the windows machines using this AD, also able to apply policy.
Now I have installed some Linux machines but I can't able to authenticate via... (6 Replies)
I’m using the below snipped for setting the certificate and key for client authentication.
curl_easy_setopt(curl,CURLOPT_SSLCERT,"clientCert.pem");
curl_easy_setopt(curl,CURLOPT_SSLCERTPASSWD,"changeit");
curl_easy_setopt(curl,CURLOPT_SSLCERTTYPE,"PEM"); ... (2 Replies)
sasl_server_start(10 July 2001) sasl_server_start(10 July 2001)
NAME
sasl_server_start - Begin an authentication negotiation
SYNOPSIS
#include <sasl/sasl.h>
int sasl_server_start(sasl_conn_t * conn,
const char * mech,
const char * clientin,
unsigned * clientinlen,
const char ** serverout,
unsigned * serveroutlen);
DESCRIPTION
sasl_server_start() begins the authentication with the mechanism specified with mech. This fails if the mechanism is not supported. SASL_OK
is returned if the authentication is complete and the user is authenticated. SASL_CONTINUE is returned if one or more steps are still
required in the authentication. All other return values indicate failure.
conn is the SASL context for this connection
mech is the mechanism name that the client requested
clientin is the client initial response, NULL if the protocol lacks support for client-send-first or if the other end did not have an ini-
tial send. Note that no initial client send is distinct from an initial send of a null string, and the protocol MUST account for this dif-
ference.
clientinlen is the length of initial response
serverout is created by the plugin library. It is the initial server response to send to the client. This is allocated/freed by the library
and it is the job of the client to send it over the network to the server. Also protocal specific encoding (such as base64 encoding) must
needs to be done by the server.
serveroutlen is set to the length of initial server challenge
RETURN VALUE
sasl_server_start returns an integer which corresponds to one of the SASL errorcodes. SASL_OK indicates that authentication is completed
successfully. SASL_CONTINUE indicates sucess and that there are more steps needed in the authentication. All other return codes indicate
errors and should either be handled or the authentication session should be quit.
CONFORMING TO
RFC 2222
SEE ALSO sasl(3), sasl_errors(3), sasl_server_init(3), sasl_server_new(3), sasl_server_step(3)SASL man pages SASL sasl_server_start(10 July 2001)