Authentication Providers authenticate AMQP and non-AMQP connections on Broker Ports. Multiple Authentication Providers can be configured on the Broker at the same time, however, only one can be assigned to the concrete Port.
The following authentication providers are implemented and supported:
Anonymous allows anonymous connections to the broker
External delegates authentication to the external authentication mechanisms like Client Certificate Authentication etc
Kerberos uses GSS-API SASL mechanism to authenticate connections
SimpleLDAP authenticate users against LDAP server.
PlainPasswordFile authenticate users against credentials stored in local file.
Base64MD5PasswordFile similar to the above but the password credentials are encoded and different SASL mechanisms are used for authentication.
Authentication Providers can be split into two categories:
User managing providers allowing to add/delete credentials using Broker management interfaces.
User non-managing providers using externally stored credentials for authentication.
The configuration details for Authentication Providers are covered in Section 11.1, “Authentication Providers”.