使用GSSAPI连接到LDAP时
Hashtable<String, String> env = new Hashtable<>();
env.put(Context.INITIAL_CONTEXT_FACTORY, LdapCtxFactory.class.getName());
// Must use fully qualified hostname
env.put(Context.PROVIDER_URL, ldapUri);
// Request the use of the "GSSAPI" SASL mechanism
// Authenticate by using already established Kerberos credentials
env.put(Context.SECURITY_AUTHENTICATION, "GSSAPI");
我有
javax.security.sasl.SaslException: No common protection layer between client and server
at com.sun.security.sasl.gsskerb.GssKrb5Client.doFinalHandshake(GssKrb5Client.java:251) ~[na:1.8.0_40]
at com.sun.security.sasl.gsskerb.GssKrb5Client.evaluateChallenge(GssKrb5Client.java:186) ~[na:1.8.0_40]
at com.sun.jndi.ldap.sasl.LdapSasl.saslBind(LdapSasl.java:133) ~[na:1.8.0_40]
最佳答案
您必须指定QOP
env.put("javax.security.sasl.qop", "auth-conf");
关于java - 使用GSSAPI连接到LDAP时出现“客户端和服务器之间没有通用保护层”错误,我们在Stack Overflow上找到一个类似的问题:https://stackoverflow.com/questions/31404579/