java - 使用 GSSAPI 连接到 LDAP 时出现“客户端和服务器之间没有公共保护层”错误

Question

使用 GSSAPI 连接到 LDAP 时

Hashtable<String, String> env = new Hashtable<>();
env.put(Context.INITIAL_CONTEXT_FACTORY, LdapCtxFactory.class.getName());

// Must use fully qualified hostname
env.put(Context.PROVIDER_URL, ldapUri);

// Request the use of the "GSSAPI" SASL mechanism
// Authenticate by using already established Kerberos credentials
env.put(Context.SECURITY_AUTHENTICATION, "GSSAPI");

我有

javax.security.sasl.SaslException: No common protection layer between client and server
at com.sun.security.sasl.gsskerb.GssKrb5Client.doFinalHandshake(GssKrb5Client.java:251) ~[na:1.8.0_40]
at com.sun.security.sasl.gsskerb.GssKrb5Client.evaluateChallenge(GssKrb5Client.java:186) ~[na:1.8.0_40]
at com.sun.jndi.ldap.sasl.LdapSasl.saslBind(LdapSasl.java:133) ~[na:1.8.0_40]

score 2 · Accepted Answer

2

您必须指定QOP

env.put("javax.security.sasl.qop", "auth-conf");

于 2015-07-14T10:52:10.320 回答

java - 使用 GSSAPI 连接到 LDAP 时出现“客户端和服务器之间没有公共保护层”错误

1 回答 1

Related

Reference