Red Hat 8.1 User Manual

Table 6.8. Description of DIGEST-MD5 SASL Mechanism Options

Required
or
Optional

Option

Description

Example

Required

mech=DIGEST-MD5 Gives the SASL mechanism.

-o “mech=DIGEST-MD5”

Required

authid=authid_value Gives the ID used to authenticate to the server.

authid_value can be the following:

UID. For example, msmith.
u: uid. For example, u: msmith.
dn: dn_value. For example, dn:
uid=m sm ith,ou=People,o=exam ple.com .

-o
“authid=dn:uid=msmith,ou=People,o=example.com"

Optional

secprop=value

The secprop attribute sets the security properties
for the connection. The secprop value can be any
of the following:

None
noplain — Do not permit mechanisms
susceptible to simple passive attack.
noanonymous — Do not permit mechanisms
that allow anonymous access.
minssf — Require a minimum security strength;
this option needs a numeric value specifying
bits of encryption. A value of - 1 means
integrity is provided without privacy.
maxssf — Require a maximum security
strength; this option needs a numeric value
specifying bits of encryption. A value of - 1
means integrity is provided without privacy. The
maximum value is 128.

-o “secprop=noplain,noanonymous,
maxssf=128,minssf=128”

184

Chapter 6. Command-Line Utilities