我有一些问题。
列出的错误:
LDAP错误代码8 - 服务器日志 javax.naming.AuthenticationNotSupportedException:[LDAP:错误代码8 - 00002028:LdapErr:DSID-0C090202,注释:如果连接上的SSL \ TLS尚未激活,则服务器需要绑定才能打开完整性检查,数据0,v2580] < / p>
- problem action(?)
client to login request to server.
and server send request to LDAP.
some people login sucess. but, other some people login failed.
LDAP response error code 8, and server log got [javax.naming.AuthenticationNotSupportedException: [LDAP: error code 8 - 00002028: LdapErr: DSID-0C090202, comment: The server requires binds to turn on integrity checking if SSL\TLS are not already active on the connection, data 0, v2580 ]]
but i using LDAP. no LDAPS.
- some people said check under #1.
- #1. KRDOM01 : HKEY_LOCAL_MACHINE \ SYSTEM \ CurrentControlSet \ Services \ NTDS \ Parameters \ LDAPServerIntegrity = 1
but #1 setting LDAPServerIntegrity = 1
- my code was
Hashtable<String, Object> env = new Hashtable<String, Object>();
env.put(Context.INITIAL_CONTEXT_FACTORY, "com.sun.jndi.ldap.LdapCtxFactory");
env.put(Context.PROVIDER_URL, "ldap://"+host+":"+port);
env.put(Context.SECURITY_AUTHENTICATION, "simple");
env.put(Context.SECURITY_PRINCIPAL, principal);
env.put(Context.SECURITY_CREDENTIALS, pwd);
why some people login ok, why some people got fail?
请帮帮我。
答案 0 :(得分:0)
这些错误表明您的LDAP服务器已设置为“需要签名”。
如果使用SSL连接,则不需要进行数据签名.4
如果您能够成功绑定,那么我会“猜测”您首次连接的服务器未启用签名,并且您将被引用到已启用签名的域控制器。