"客户端和服务器之间没有共同的保护层"我使用GSSAPI连接到LDAP时出错

时间:2015-07-14 10:52:10

标签: java ldap gssapi

使用GSSAPI

连接到LDAP时 
Hashtable<String, String> env = new Hashtable<>();
env.put(Context.INITIAL_CONTEXT_FACTORY, LdapCtxFactory.class.getName());

// Must use fully qualified hostname
env.put(Context.PROVIDER_URL, ldapUri);

// Request the use of the "GSSAPI" SASL mechanism
// Authenticate by using already established Kerberos credentials
env.put(Context.SECURITY_AUTHENTICATION, "GSSAPI");

我得到了

javax.security.sasl.SaslException: No common protection layer between client and server
at com.sun.security.sasl.gsskerb.GssKrb5Client.doFinalHandshake(GssKrb5Client.java:251) ~[na:1.8.0_40]
at com.sun.security.sasl.gsskerb.GssKrb5Client.evaluateChallenge(GssKrb5Client.java:186) ~[na:1.8.0_40]
at com.sun.jndi.ldap.sasl.LdapSasl.saslBind(LdapSasl.java:133) ~[na:1.8.0_40]

1 个答案:

答案 0 :(得分:0)

您必须指定QOP 

env.put("javax.security.sasl.qop", "auth-conf");
相关问题
最新问题