RFC-2617 HTTP Basic Authentication

RFC-2617 HTTP Basic Authentication is the simplest method for client authentication. HTTP Basic Authentication uses the standard Authentication HTTP headers to pass user credentials between the client and the server. Because HTTP Basic Authentication provides no means for protecting the confidentiality of a user’s credentials, SonicOS API requires user credentials to be transmitted over HTTPS when this is enabled.

For SonicOS API HTTP Basic Authentication, use the Linux command-line curl command with the -u option:

• Login:

  curl -k -i -u admin:password -X POST https://a.b.c.d/api/sonicos/auth

• Logout:

  curl -k -i -X DELETE https://a.b.c.d/api/sonicos/auth