[IOT] Question: SASL EXTERNAL for client auth

Kevin Smith kevin at kismith.co.uk
Wed Mar 13 15:14:24 UTC 2013


On Wed, Mar 13, 2013 at 3:06 PM, Thomas Nichols <tnichols at enernoc.com> wrote:
> Can anyone speak from experience on using SASL EXTERNAL for c2s connections?  E.g. A client authenticating with a certificate rather than a password.  Certificates seem more appropriate for managing many IoT cases.
>
> I can't find much — or any — information on SASL EXTERNAL support for most of the common servers and client implementations.  So has anyone used certificate auth for XMPP clients?  I'm particularly interested in the more common open source clients and servers – Smack, OpenFire, ejabberd, Prosody but any first-hand knowledge would be helpful.

I can't speak for the OSS servers, but Swift (OSS) has been tested
quite a lot with SASL EXTERNAL against M-Link (not OSS).

/K


More information about the IOT mailing list