IBMSASL Provider

The IBMSASL provider supports the following client and server mechanisms.

Client Mechanisms
  • PLAIN (RFC 2595). This mechanism supports cleartext username/password authentication.
  • CRAM-MD5 (RFC 2195). This mechanism supports a hashed username/password authentication scheme.
  • DIGEST-MD5 (RFC 2831). This mechanism defines how HTTP Digest Authentication can be used as a SASL mechanism.
  • NTLM. This mechanism supports Windows NTLM authentication, integrity and confidentiality.
  • GSSAPI (RFC 2222). This mechanism uses the GSSAPI for obtaining authentication information. It supports Kerberos v5 authentication.
  • EXTERNAL (RFC 2222). This mechanism obtains authentication information from an external channel (such as TLS or IPsec).
Server Mechanisms
  • CRAM-MD5
  • DIGEST-MD5
  • NTLM
  • GSSAPI (Kerberos v5)