Name Attributes for the GSS-API Extensible Authentication Protocol (EAP) Mechanism, December 2013
- Canonical URL:
- File formats:
- PROPOSED STANDARD
- S. Hartman
- abfab (sec)
Discuss this RFC: Send questions or comments to firstname.lastname@example.org
The naming extensions to the Generic Security Service Application Programming Interface (GSS-API) provide a mechanism for applications to discover authorization and personalization information associated with GSS-API names. The Extensible Authentication Protocol GSS-API mechanism allows an Authentication, Authorization, and Accounting (AAA) peer to provide authorization attributes alongside an authentication response. It also supplies mechanisms to process Security Assertion Markup Language (SAML) messages provided in the AAA response. This document describes how to use the Naming Extensions API to access that information.
For the definition of Status, see RFC 2026.
For the definition of Stream, see RFC 4844.