https://bugs.openldap.org/show_bug.cgi?id=9495
--- Comment #3 from Karl O. Pinc <[email protected]> --- On Mon, 14 Jun 2021 16:39:43 +0000 [email protected] wrote: > https://bugs.openldap.org/show_bug.cgi?id=9495 > > Quanah Gibson-Mount <[email protected]> changed: > > What |Removed |Added > ---------------------------------------------------------------------------- > Resolution|--- |WONTFIX > Status|UNCONFIRMED |RESOLVED > > --- Comment #2 from Quanah Gibson-Mount <[email protected]> --- > Invalid usage. > > SASL works with usernames, not DNs. I.e., -U "cn=..." is invalid. RFC4422 Simple Authentication and Security Layer (SASL) states: 3.4.1. Authorization Identity String The authorization identity string is a sequence of zero or more Unicode [Unicode] characters, excluding the NUL (U+0000) character, representing the identity to act as. So, the literal "cn=..." is a perfectly valid SASL username. Regards, Karl <[email protected]> Free Software: "You don't pay back, you pay forward." -- Robert A. Heinlein -- You are receiving this mail because: You are on the CC list for the issue.
