使用 LDAP/Java 启用 Active Directory 用户 [英] Enable an Active Directory user with LDAP/Java
问题描述
我正在尝试使用 LDAP 和 Java (1.4) 在 Active Directory 中启用用户.但是我不断收到以下错误:
I'm trying to enable a user in the Active Directory with LDAP and Java (1.4). However I keep getting the following error:
java.lang.NullPointerException 在com.sun.jndi.ldap.LdapCtx.c_modifyAttributes(LdapCtx.java:1432) 在com.sun.jndi.toolkit.ctx.ComponentDirContext.p_modifyAttributes(ComponentDirContext.java:255) 在com.sun.jndi.toolkit.ctx.PartialCompositeDirContext.modifyAttributes(部分CompositeDirContext.java:172) 在com.sun.jndi.toolkit.ctx.PartialCompositeDirContext.modifyAttributes(部分CompositeDirContext.java:161) 在javax.naming.directory.InitialDirContext.modifyAttributes(InitialDirContext.java:146) 在 be.ideal.LDAP.newuser.main(newuser.java:61) 中的异常线程主"
java.lang.NullPointerException at com.sun.jndi.ldap.LdapCtx.c_modifyAttributes(LdapCtx.java:1432) at com.sun.jndi.toolkit.ctx.ComponentDirContext.p_modifyAttributes(ComponentDir Context.java:255) at com.sun.jndi.toolkit.ctx.PartialCompositeDirContext.modifyAttributes(Partial CompositeDirContext.java:172) at com.sun.jndi.toolkit.ctx.PartialCompositeDirContext.modifyAttributes(Partial CompositeDirContext.java:161) at javax.naming.directory.InitialDirContext.modifyAttributes(InitialDirContext. java:146) at be.ideal.LDAP.newuser.main(newuser.java:61) Exception in thread "main"
我已经确认我的用户有密码,我似乎无法将他的状态更改为活动
I already confirmed that my user has a password, I just can't seem to change his status to active
我的代码:
public static void main(String[] args) {
String userName = "cn=Albert Einstein,ou=Accounts,DC=PORTAL,DC=COMPANY,DC=BE";
String groupName = "cn=Administrators,cn=Roles,DC=PORTAL,DC=COMPANY,DC=BE";
boolean isDisabled = false;
try {
System.out.println("Creating initial directory context...");
LdapContext ctx = new InitialLdapContext(X_Ldap.getEnvironment(),
null);
Attributes attrs = new BasicAttributes(true);
attrs.put("objectClass", "user");
attrs.put("cn", "Albert Einstein");
String newQuotedPassword = ""Pass123"";
byte[] newUnicodePassword = newQuotedPassword.getBytes("UTF-16LE");
attrs.put(new BasicAttribute("unicodePwd", newUnicodePassword));
attrs.put(new BasicAttribute("msDS-UserAccountDisabled", "FALSE"));
System.out.println("Creating context...");
Context result = ctx.createSubcontext(userName, attrs);
System.out.println("Created account for: " + userName);
System.out.println("Creating context...");
Context result = ctx.createSubcontext(userName, attrs);
System.out.println("Created account for: " + userName);
try {
ModificationItem member[] = new ModificationItem[1];
member[0] = new ModificationItem(DirContext.ADD_ATTRIBUTE,
new BasicAttribute("member", userName));
ctx.modifyAttributes(groupName, member);
System.out.println("Added user to group: " + groupName);
} catch (NamingException e) {
System.err.println("Problem adding user to group: " + e);
}
ctx.close();
System.out.println("Successfully created User: " + userName);
} catch (NamingException e) {
System.err.println("Problem creating object: " + e);
}
catch (IOException e) {
System.err.println("Problem creating object: " + e);
}
}
PS:我的活动目录使用 AD LDS
PS: I am using AD LDS for my active directory
推荐答案
找到了:需要使用 DirContext.ADD_ATTRIBUTE 而不是 DirContext.REPLACE_ATTRIBUTE
Found it: Needed to use DirContext.ADD_ATTRIBUTE instead of DirContext.REPLACE_ATTRIBUTE
这篇关于使用 LDAP/Java 启用 Active Directory 用户的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!