RFC 4513:Lightweight Directory Access Protocol (LD...
RFC-Ref
Previous
|
Next
Frontpage
|
Contents
|
Keywords
Lightweight Directory Access Protocol (LDAP): Authentication Methods and Security Mechanisms
1. Introduction
1.1. Relationship to Other Documents
1.2. Conventions
2. Implementation Requirements
3. StartTLS Operation
3.1. TLS Establishment Procedures
3.1.1. StartTLS Request Sequencing
3.1.2. Client Certificate
3.1.3. Server Identity Check
3.1.3.1. Comparison of DNS Names
3.1.3.2. Comparison of IP Addresses
3.1.3.3. Comparison of Other subjectName Types
3.1.4. Discovery of Resultant Security Level
3.1.5. Refresh of Server Capabilities Information
3.2. Effect of TLS on Authorization State
3.3. TLS Ciphersuites
4. Authorization State
5. Bind Operation
5.1. Simple Authentication Method
5.1.1. Anonymous Authentication Mechanism of Simple Bind
5.1.2. Unauthenticated Authentication Mechanism of Simple Bind
5.1.3. Name/Password Authentication Mechanism of Simple Bind
5.2. SASL Authentication Method
5.2.1. SASL Protocol Profile
5.2.1.1. SASL Service Name for LDAP
5.2.1.2. SASL Authentication Initiation and Protocol Exchange
5.2.1.3. Optional Fields
5.2.1.4. Octet Where Negotiated Security Layers Take Effect
5.2.1.5. Determination of Supported SASL Mechanisms
5.2.1.6. Rules for Using SASL Layers
5.2.1.7. Support for Multiple Authentications
5.2.1.8. SASL Authorization Identities
5.2.2. SASL Semantics within LDAP
5.2.3. SASL EXTERNAL Authentication Mechanism
5.2.3.1. Implicit Assertion
5.2.3.2. Explicit Assertion
6. Security Considerations
6.1. General LDAP Security Considerations
6.2. StartTLS Security Considerations
6.3. Bind Operation Security Considerations
6.3.1. Unauthenticated Mechanism Security Considerations
6.3.2. Name/Password Mechanism Security Considerations
6.3.3. Password-Related Security Considerations
6.3.4. Hashed Password Security Considerations
6.4. SASL Security Considerations
6.5. Related Security Considerations
7. IANA Considerations
8. Acknowledgements
9. Normative References
10. Informative References
11. Appendix A. Authentication and Authorization Concepts
12. Appendix B. Summary of Changes
13. Author's Address
14. Full Copyright Statement
15. Intellectual Property
16. Acknowledgement
Previous
|
Next
Frontpage
|
Contents
|
Keywords
Web
RFC-Ref
RFC-Ref.org
Frontpage
Global Index
RFC
Sister Sites
Chess-Ref.org
Law-Ref.org
InChI.info
Zvon.org
