I was able to find a link to the jldap CVS repository and download the source from there. I tried to compile several branches, all with no luck. I searched around and found that you need a proprietary jar file that you get from some Novell product in order to compile it. I could only find a single active proprietary API for Java. In fact, the API is just what I was looking for.
I can call a simple authenticate method with a user name and password supplied and then check for group membership just as easily. The library seemed to do a good job of using AD specific terminology so it made the code read well.
I found Jespa mentioned in several forums and postings on the net as the recommended way of solving my specific problem. In fact, there is even a Spring framework plugin for AD that is based on Jespa. I work for a very profitable corporation, so the license fee is not a real problem. There is a phone number listed, but no company information page and no street address. This one is the germ of a quite sane way to talk to AD directly from Java.
Basically, Kohsuke is using one of his own open source projects, com4j , to allow Java to talk to Windows native COM objects. This way you are interacting directly with AD. The main advantage, as Kohsuke points out several times, is that it can be made into a zero configuration solution. I checked out the source and it was simple and easy to understand. The only problem here is the com4j project. Thanks quite useful. But it is not thread safe.
You use instance level variable inside method. Venkat says:. January 6, at pm. April 2, at pm. Anonymous says:. July 13, at am. Dharmendra says:. November 29, at am. Appreciate for your support!!! December 15, at am. Paddy says:. March 18, at am. Thank you for this blog…. That is very helpful to me …. April 4, at am. Ravi Akella says:. July 11, at am. Thanks a lot venkat.. July 19, at pm. January 15, at am. February 21, at pm.
LDAP can do authentication too, but is also a directory with further information about the user. The main difference is that you can use Kerberos for SSO. Be more precise what you exactly want. Add a comment. Active Oldest Votes. Improve this answer. That was preferable for me because I knew my email address, but not my DN. I have little familiarity with Kerberos tbh. If second probably LDAP, if first, not really sure. If you just want to access some information stored in a directory use LDAP.
Your question is a bit broad, maybe you can outline your requirements. Neverthess, it's still unclear what the OP really needs. Show 2 more comments. NET Smartik. NET 1 1 silver badge 4 4 bronze badges.
0コメント