PreviousNext

Object Identifier

Applications use the gss_OID data type to choose a security mechanism, either DCE Security or Kerberos, and to specify name types. Select a security mechanism by using the following two OIDs:

· For DCE Security, specify either GSSDCE_C_OID_DCE_KRBV5_DES or GSS_C_NULL_OID.

· For Kerberos Version 5, specify GSS_C_OID_KRBV5_DES.

Use of the default security mechanisms, specified by the constant GSS_C_NULL_OID, helps to ensure the portability of the application.

The gss_OID data type contains tree-structured values defined by ISO and has the following structure:

typedef struct gss_OID_desc_struct {
OM_uint32 length;
void *elements;
} gss_OID_desc, *gss_OID;

The elements field of the structure points to the first byte of an octet string containing the ASN.1 BER encoding of the value of the gss_OID data type. The length field contains the number of bytes in the value.

The gss_OID_desc values returned from the GSSAPI are read-only values. The application should not try to deallocate them.