java6版本如何禁用,如何禁用java 1.8.181版本的端点标识

最新推荐文章于 2024-05-16 14:37:40 发布
最新推荐文章于 2024-05-16 14:37:40 发布
阅读量176 收藏
点赞数
文章标签: java6版本如何禁用

When I upgraded java from 1.8.161 to 1.8.181, I am not able to connect to LDAP from my application,

i get below exception when i try to login to application with a user that is active in LDAP.

javax.naming.CommunicationException: : [Root exception is

javax.net.ssl.SSLHandshakeException: java.security.cert.CertificateException:

No subject alternative names matching IP address found]

I found the below release notes on the Oracle site for version 1.8.181

Changes

core-libs/javax.naming

➜ Improve LDAP support

Endpoint identification has been enabled on LDAPS connections.

To improve the robustness of LDAPS (secure LDAP over TLS ) connections, endpoint identification

algorithms have been enabled by default.

Note that there may be situations where some applications that were previously able to successfully connect

to an LDAPS server may no longer be able to do so.

Such applications may, if they deem appropriate, disable endpoint identification using a

new system property: com.sun.jndi.ldap.object.disableEndpointIdentification.

Define this system property (or set it to true) to disable endpoint identification algorithms.

I tried to set the property to true as below along with other properties. But still it throws same error.

Hashtable env = new Hashtable();

env.put(Context.INITIAL_CONTEXT_FACTORY, ctxFactory);

env.put(Context.PROVIDER_URL, providerUrl);

env.put(Context.SECURITY_PRINCIPAL, secPrincipal);

env.put(Context.SECURITY_AUTHENTICATION, secAuthentication);

env.put(Context.SECURITY_CREDENTIALS, secCredentials);

env.put("com.sun.jndi.ldap.object.disableEndpointIdentification" ,disableEndpointIdentification);

DirContext ldapCtx = new InitialDirContext(env);

Need your help how and where exactly we need to set the property

com.sun.jndi.ldap.object.disableEndpointIdentification to true.

There is no such constant String variable related to this in Context Interface too.

If I revert back to java 1.8.161 version it works fine.

解决方案

doc tells about application system property and not about Ldap context environment

then it needs to be setup on application JVM (java command line) for the app as

-Dcom.sun.jndi.ldap.object.disableEndpointIdentification=true

weixin_39677203
关注
  • 0
    点赞
  • 0
    收藏
    觉得还不错? 一键收藏
  • 0
    评论
记一次java实现修改windows AD域的密码
lx318的博客
05-14 3502
前一段时间接到一个修改windows ad域密码的需求,也是第一次接触ad域操作的需求,特记录在博客以备后需,也希望能给有需要的朋友提供一点点解决问题的思路。 根据windows帮助文档说明,修改ad域密码是需要使用ssl认证方式。https://support.microsoft.com/zh-cn/help/269190/how-to-change-a-windows-active-dire...
java版本使用springboot vue websocket webrtc实现视频通话
02-22
在本文中,我们将深入探讨如何使用Java、Spring Boot、Vue.js和WebRTC技术来构建一个实时的视频通话系统。这是一个现代Web应用中的重要组成部分,尤其在远程协作和在线沟通日益增长的需求下。以下是对每个技术栈及其...
javax.naming.CommunicationException:simple bind faild
日日留心的技术专栏
02-24 3326
发生异常: javax.naming.CommunicationException:simple bind faild: 办法一: 项目启动配置添加 -Dcom.sun.jndi.ldap.object.disableEndpointIdentification=true 办法二: 项目启动类添加; System.setProperty(“com.sun.jndi.ldap.object.disableEndpointIdentification”, “true”); ...
Java之证书访问AD域
lemon
02-18 2112
环境:1.8.0_181 1.8.0_181 改进对Ldap的支持,点击查看JDK官网介绍 参考文章解决该问题 执行程序出现错误java.security.cert.CertificateException: No subject alternative DNS name matching <hostname> found,需要在应用启动时添加参数-Dcom.sun.jndi.l...
ldap错误解决
最新发布
0.0雨的博客
05-16 287
解决ldap问题
SSL证书认证失败javax.net.ssl.SSLHandshakeException: java.security.cert.CertificateException: 解决方法
热门推荐
qq_40315210的博客
10-11 3万+
访问第三方接口传递数据,出现SSL证书认证失败的情况,于是做出了如下解决方案: 1.代码层跳出SSL验证 javax.net.ssl.SSLHandshakeException: java.security.cert.CertificateException: No subject alternative DNS name matching idcardcert.market.al...
javax.net.ssl.SSLHandshakeException: java.security.cert.CertificateException:No subject alternative
weixin_53273474的博客
10-28 2147
javax.net.ssl.SSLHandshakeException: java.security.cert.CertificateException:No subject alternative names present解决方案。
java socket 经典版本
03-08
这个经典版本可能包含了一系列关于如何有效使用Java Socket进行网络通信的实例和最佳实践。 首先,让我们深入了解Java Socket的基本概念。Socket通常被称为套接字,它是两台计算机之间通信的端点。在TCP/IP协议族中...
java版本websocket实例下载
10-18
2. **ServerEndpoint注解**:在服务器端,我们通常会使用`@ServerEndpoint`注解来标识一个类作为WebSocket的端点。这个注解的值是WebSocket连接的URL路径。 3. **OnOpen、OnClose、OnMessage方法**:这些是...
基于Java聊天室程序(java) .zip
04-23
Java聊天室程序详解】 Java聊天室程序是一个典型的多用户实时通信系统,它利用Java的网络编程能力,实现用户间的即时消息传递。在本项目中,我们将深入探讨以下几个关键知识点: 1. **Java网络编程基础**:Java...
Java-WebSocket-1.3.9.jar
07-25
这个"Java-WebSocket-1.3.9.jar"文件是该库的一个版本版本号为1.3.9。WebSocket协议是HTML5的一部分,它允许服务器和客户端之间建立持久的连接,从而在无需频繁建立新连接的情况下进行实时数据交换。这种协议对于...
sun 的ldap.jar
07-26
含 com.sun.jndi.ldap.LdapCtxFactory
javax.net.ssl.SSLHandshakeException: java.security.cert.CertPathValidatorException
yzpbright的博客
03-30 8415
使用的是okhttp,https请求报异常: Caused by: javax.net.ssl.SSLHandshakeException: java.security.cert.CertPathValidatorException: Trust anchor for certification path not found. at org.conscrypt.ConscryptFileDescriptorSocket.startHandshake(ConscryptFileDescriptorS
https服务证书错误javax.net.ssl.SSLHandshakeException: java.security.cert.CertPathValidatorException:
qq_35373269的博客
04-21 4189
javax.net.ssl.SSLHandshakeException: java.security.cert.CertPathValidatorException: Trust anchor for certification path not found
解决 javax.net.ssl.SSLHandshakeException: java.security.cert.CertificateException
qq_41913923的博客
09-26 3025
com.mysql.jdbc.exceptions.jdbc4.CommunicationsException: Communications link failure The last packet successfully received from the server was 1,234 milliseconds ago. The last packet sent successfully to the server was 1,224 milliseconds ago. at sun.ref
Caused by: javax.net.ssl.SSLHandshakeException: java.security.cert.CertificateNotYetValidException:
阿年的博客
01-14 2326
Caused by: javax.net.ssl.SSLHandshakeException: java.security.cert.CertificateNotYetValidException: NotBefore: Tue Oct 11 17:24:18 CST 2022 CertificateNotYetValidException证书不合法异常
AD域连接出错问题simple bind failed:IP:PORT----SSL连接AD域
junxunfs的博客
05-08 1104
keytool -import -keystore D:\Java\jdk1.8.0_211\jre\lib\security\cacerts -storepass changeit -keypass changeit -alias ca_1 -file D:/证书2.cer。进入本地C:\Windows\System32\drivers\etc\hosts修改hosts。进入jdk的bin目录,运行命令运行框。添加IP和域名,域名为证书上的域名,将cer文件加入到jdk密钥库中。
报错:Caused by: javax.net.ssl.SSLHandshakeException: java.security.cert.CertificateException: java.sec
qq_42803467的博客
08-15 1801
在进行单元测试发现Caused by: javax.net.ssl.SSLHandshakeException: java.security.cert.CertificateException: java.sec 解决方法: "jdbc:mysql://127.0.0.1:3306/java_16blogdemo?characterEncoding=utf-8&useSSL=true"; 将上面的useSSL改为false即可 。 "C:\Program Files (x86)\Jav
Caused by: javax.net.ssl.SSLHandshakeException: java.security.cert.CertificateException: java.securi
weixin_46311652的博客
11-17 1474
Caused by: javax.net.ssl.SSLHandshakeException: java.security.cert.CertificateException: java.security.cert.CertPathValidatorException: Path does not chain with any of the trust anchors
Java6轻松开发WebService实战指南
"Java6开发WebService的入门实例" 在Java世界中,开发Web Service是一种常见的交互方式,允许不同系统间通过网络进行数据交换和服务调用。通常,开发者会使用如CXF、Axis2、XFire等第三方框架来实现这一目标,因为...
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值