• Post Reply Bookmark Topic Watch Topic
  • New Topic

JNDI secure?

 
keith doyle
Greenhorn
Posts: 15
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Is it possible to secure/encrypt a JNDI connection between a client and server?
Much thanks!
Keith
 
Roger Chung-Wee
Ranch Hand
Posts: 1683
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
A resource (like JNDI, EJB, JDBC, JMS, URL, etc) can be protected by the EJB server from unauthorized access using security roles and security policies.

As for connectivity, the server should support SSL communication. To use SSL when connecting to a server application with your browser, you simply specify HTTPS and the secure port (port number 7002) in the URL. For example:



Where localhost is the name of the system hosting the Web application.

There's quite a bit more on this subject, including the need for a private key, a digital certificate containing the matching public key, and a certificate signed by at least one trusted certificate authority (CA) that can verify the data embedded in the digital certificate. Check your server documentation for details.
 
Gerardo Tasistro
Ranch Hand
Posts: 362
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
I believe so. I've read some references to LDAP that use SSL although I haven't tried it. What do you want to work with? Dbase? LDAP?
 
keith doyle
Greenhorn
Posts: 15
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Thanks Guys,

I just want my client to connect to jboss' jndi service. I can enter jnps
in the url like so:

[CODE]
Hashtable env = new Hashtable();
env.put(Context.INITIAL_CONTEXT_FACTORY,
"org.jnp.interfaces.NamingContextFactory");
env.put(Context.PROVIDER_URL,"jnps://myserver");
env.put(Context.URL_PKG_PREFIXES, "org.jboss.naming rg.jnp.interfaces" );
Context lContext = new InitialContext(env);
[CODE]

But I'm not so sure this is encrypting the data. Also how do I specify the authentication/authorisation ? Perhaps JNDI isn't the way to go....
 
Reid M. Pinchback
Ranch Hand
Posts: 775
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
http://wiki.jboss.org/wiki/Wiki.jsp?page=XMBeansforSecurity
 
  • Post Reply Bookmark Topic Watch Topic
  • New Topic
Boost this thread!