Chapter 20. SASL Mechanism Options

These options modify the behaviour of the callbacks (Chapter 7) in the library. The default is the query the user on the terminal.

  -a, --authentication-id=STRING   Identity of credential owner.
      --disable-cleartext-validate
                             Disable cleartext validate hook, forcing server to
                             prompt for password.
      --enable-cram-md5-validate   Validate CRAM-MD5 challenge and response
                             interactively.
      --hostname=STRING      Set the name of the server with the requested
                             service.
  -n, --anonymous-token=STRING   Token for anonymous authentication, usually
                             mail address (ANONYMOUS only).
  -p, --password=STRING      Password for authentication (insecure for
                             non-testing purposes).
      --passcode=NUMBER      Passcode for authentication (SECURID only).
      --quality-of-protection=<auth | auth-int | auth-conf>
                             How application payload will be protected.  "auth"
                             means no protection, "auth-int" means integrity
                             protection, "auth-conf" means integrity and
                             confidentialiy protection.  Currently only used by
                             DIGEST-MD5, where the default is "auth-conf".
  -r, --realm=STRING         Realm (may be given more than once iff server).
                             Defaults to hostname.
      --service=STRING       Set the requested service name (should be a
                             registered GSSAPI host based service name).
      --service-name=STRING  Set the generic server name in case of a
                             replicated server (DIGEST-MD5 only).
  -x, --maxbuf=NUMBER        Indicate maximum buffer size (DIGEST-MD5 only).
  -z, --authorization-id=STRING   Identity to request service for.