wildfly(9)+ + Kerberos的LDAP(活动目录) [英] wildfly (9) + kerberos + ldap (Active Directory)

查看:227
本文介绍了wildfly(9)+ + Kerberos的LDAP(活动目录)的处理方法,对大家解决问题具有一定的参考价值,需要的朋友们下面随着小编来一起学习吧!

问题描述

我试图去点,其中wildfly 9将能够使用Kerberos验证用户身份,并与LDAP授权他们。

I'm trying to get to point, where wildfly 9 would be able to authenticate users with kerberos and authorize them with ldap.

我在使用JAAS富EJB客户端(有 com.sun.security.auth.module.Krb5LoginModule )。

I'm having rich EJB client using JAAS (having com.sun.security.auth.module.Krb5LoginModule).

我需要一些样本,包括一步一步的配置。

I'd need some sample including the step-by-step configuration.

我发现的是:

  • wildfly with LDAP (https://developer.jboss.org/wiki/LDAPSecurityRealmExamples)
  • wildfly with SPNEGO (https://github.com/kwart/spnego-demo)
  • wildfly with kerberos for server management (http://darranl.blogspot.co.uk/2014/10/wildfly-9-kerberos-authentication-for.html, http://darranl.blogspot.co.uk/2014/11/wildfly-9-kerberos-authentication-with.html)

不过我还没有网络,但丰富的应用程序+我没有使用LDAP进行身份验证,但Kerberos的。我不仅需要管理操作使用Kerberos身份验证。

however I have not web but rich application + I'm not using LDAP for authentication, but kerberos. And I need not only management operations to be authenticated using kerberos.

任何完整的样本/引用了吗?

Any complete sample/references out there?

推荐答案

我设法使它与此库的工作:

i manage to make it work with this library :

https://github.com/dstraub/spnego-wildfly

您incorpore在你的应用程序(在MVN库中不可用)的罐子,那么你必须指定认证机制SPNEGO,例如在web.xml中,配置活动目录,创建密钥表,配置standalone.xml或domain.xml中,这是好的,也可以用在前面的Apache和负载平衡器,与样品应用的例子

you incorpore the jar in your application (not available in MVN repository), then you have to specify the mechanism authentication "SPNEGO" for example in web.xml, configure your active directory, create your keytab, configure your standalone.xml or domain.xml and it is OK , you can also use an apache in front and a load balancer, an example with the sample-app

这篇关于wildfly(9)+ + Kerberos的LDAP(活动目录)的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!

查看全文
相关文章
Java开发最新文章
热门教程
热门工具
登录 关闭
扫码关注1秒登录
发送“验证码”获取 | 15天全站免登陆