爪哇 - JNDI /活动目录/ Kerberos的/ WebLogic Server的 - 密码配置 [英] Java - JNDI / Active Directory / Kerberos / WebLogic Server - Password Configuration

问题描述

我想从使用Java和JNDI从我的EJB的Active Directory获取数据。 这样做的搜索，我需要定义一个用户和密码。 我想在AD创建一个服务帐户（我的服务器）的。

I want to fetch data from an Active Directory using Java and JNDI from my EJB. Doing this search I need to define a user and a password. I was thinking of creating a service account (for my server) in the AD.

我也将使用Kerberos协议和WebLogic Server。 据我了解，现在，我需要创建一个包含此服务帐户的凭据密钥表文件。该密钥表文件将在WebLogic Server中进行配置？

I will also be using Kerberos protocol and WebLogic Server. As I understand it now, I need to create a keytab file that will contain this service account's credentials. This keytab file will then be configured in the WebLogic Server?

所以，这意味着我必须注明用户名/密码都为密钥表文件，并在我的EJB（来从AD使用JNDI数据的）。这究竟是什么最好的方法？可以将密钥表文件中动态定义的？这将简化更改密码，只在一个地方这样做。

So, this means that I will have to state the username/password both for the keytab file and in my EJB (to fetch the data from the AD using JNDI). What is the best approach for this? Can the keytab file be defined dynamically? Which would simplify changing the password and only doing this at one place.

推荐答案

让你的机器加入域，开始您的计算机帐户的WebLogic服务器或给予访问机器密钥表，创建一个JDNI资源与所述的 DirContextSourceFactory 以及你能为你要访问的AD

Have your machine join the domain, start you WebLogic server with the machine account or give access to the machine keytab, create a JDNI resource with the DirContextSourceFactory and you are able to access the AD as you wish.

这篇关于爪哇 - JNDI /活动目录/ Kerberos的/ WebLogic Server的 - 密码配置的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！