javax.naming.CommunicationException：简单绑定失败 [英] javax.naming.CommunicationException: simple bind failed

问题描述

当尝试使用简单的LDAP应用程序连接到LDAP服务器时，我收到一条错误，其中显示简单绑定失败。我假设这与某种BIND有关。我在其中一个属性文件中有一个绑定属性用于不同的应用程序，但我不知道如何将该属性传递给该程序。

When trying to connect to the LDAP server using a simple LDAP application I am getting an error which says "simple bind failed". I am assuming this is related to some sort of BIND. I have a bind property in one of the property file for a different application, but am not sure how to pass on that property to this program.

我是否需要添加更多细节？

Do I need to add any further details?

代码

import javax.naming.directory.*;   
import javax.naming.*;   
import java.util.Vector;   
import java.util.Enumeration;   
import java.util.Properties;   
public class SearchLDAP {   
    public static void main(String[] args) {   
        String base = "";   

        String filter = "(objectclass=*)";   

        Properties env = new Properties();   

        env.put(DirContext.INITIAL_CONTEXT_FACTORY,"com.sun.jndi.ldap.LdapCtxFactory");   
        env.put(DirContext.PROVIDER_URL,"ldaps://misguided.com.au:343"); 

        try {   

            System.out.println("11");
            DirContext dc = new InitialDirContext(env);
            System.out.println("22");

            SearchControls sc = new SearchControls();   
            sc.setSearchScope(SearchControls.OBJECT_SCOPE);   
            NamingEnumeration ne = null;   

            ne = dc.search(base, filter, sc);   

            while (ne.hasMore()) {   
                SearchResult sr = (SearchResult) ne.next();   
                System.out.println(sr.toString()+"\n");   
            }   
            dc.close();   
        } catch (NamingException nex) {   
            System.err.println("Error: " + nex.getMessage());   
            nex.printStackTrace();
        }   
    }   
}  

我得到的错误是

错误

11
Error: simple bind failed: XXXX.XXX.XXXX.net:808
javax.naming.CommunicationException: simple bind failed: misguided.com.au:343 [Root exception is javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target]
    at com.sun.jndi.ldap.LdapClient.authenticate(LdapClient.java:215)
    at com.sun.jndi.ldap.LdapCtx.connect(LdapCtx.java:2740)
    at com.sun.jndi.ldap.LdapCtx.<init>(LdapCtx.java:316)
    at com.sun.jndi.ldap.LdapCtxFactory.getUsingURL(LdapCtxFactory.java:193)

推荐答案

这个问题现在有点老了但很常见。试图简要解释一下：

The question is a little older now but quite common. Attempting to explain it in short:

由于JRE密钥库中缺少SSL证书，问题就出现了。

The issue happens due to missing SSL certificates in the JRE keystore.

对于LDAPS或HTTPS连接，java运行时需要使用相应的SSL证书与另一端的服务器建立安全连接。

For an LDAPS or HTTPS connection, the java runtime needs to use the respective SSL certificate for creating a secured connection with the server at the other end.

要从其密钥库中获取SSL证书，应首先将证书安装在Java密钥库中。 'keytool'命令有助于在Java Keystore中导入/导出证书。

For picking up the SSL certificate from its keystore, the certificate should first be installed in the Java Key store. The 'keytool' command helps to import/export certificates into and from Java Keystore.

keytool –import -file adserv.crt -keystore <location to keystore> 

当它丢失时，你得到一个：

When its missing, you get a:

"sun.security.provider.certpath.SunCertPathBuilderException: 
unable to find valid certification path to requested target". 

因此，您需要做的就是在建立安全连接之前安装证书。

So, all you need to do is install the certificate before establishing a secured connection.

这篇关于javax.naming.CommunicationException：简单绑定失败的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！