The athentication modes using Kerberos do not support the impersonation level 'Delegation'. Specify ...

最新推荐文章于 2020-11-18 13:45:49 发布

转载最新推荐文章于 2020-11-18 13:45:49 发布 · 46 阅读

0 ·

CC 4.0 BY-SA版权

原文链接：http://www.cnblogs.com/xioxu/archive/2009/12/01/1614706.html

本文介绍了解决WCF中使用KerberosRequestorSecurityToken时遇到的错误，该错误源于不支持的TokenImpersonationLevel.Delegation级别。通过采用WSE中的KerberosClientContext类替代，成功实现了所需的委托级别。

今天在使用WCF中的KerberosRequestorSecurityToken时候报了如题目所说的这个错误，反编译看来一下原来这个类仅仅支持

TokenImpersonationLevel.Identification 和TokenImpersonationLevel.Impersonation，

我的使用方法如下：

KerberosRequestorSecurityToken kqToken = new KerberosRequestorSecurityToken(targetPrincipal,
System.Security.Principal.TokenImpersonationLevel.Delegation,
null, "");
byte[] token = kqToken.GetRequest();

后来经过一番调查，发现在WSE中有相关的类可以使用，便将代码改成下边的样子，引用”Microsoft.Web.Services3.dll”,工作正常。

KerberosClientContext context = new KerberosClientContext(targetPrincipal, true, ImpersonationLevel.Delegation);
byte[] token = context.InitializeContext();

转载于:https://www.cnblogs.com/xioxu/archive/2009/12/01/1614706.html

确定要放弃本次机会？

福利倒计时

: :

立减 ¥

普通VIP年卡可用

立即使用

weixin_34054866

关注关注

0
点赞
踩
0

收藏

觉得还不错? 一键收藏
0
评论
分享

复制链接

分享到 QQ

分享到新浪微博

扫一扫
举报

举报

认证 (authentication) 和授权 (authorization) 的区别

weixin_30852367的博客

08-08

2704

以前一直分不清 authentication 和 authorization，其实很简单，举个例子来说：你要登机，你需要出示你的 passport 和 ticket，passport 是为了证明你张三确实是你张三，这就是 authentication；而机票是为了证明你张三确实买了票可以上飞机，这就是 authorization。在 computer science 领域再举个例子：...

4种认证（authentication）或授权（authorization）方式

热门推荐

漫游学海之旅

04-12

9万+

Authentication vs. authorization It is easy to confuse authentication with another element of the security plan: authorization. While authentication verifies the user’s identity, authorization verifie...

参与评论您还未登录，请先登录后发表或查看评论

spark-sql启动报错GSS initiate failed

我怀念的是-无话不说的博客

01-30

8027

18/01/30 13:21:14 WARN Client: Exception encountered while connecting to the server : javax.security.sasl.SaslException: GSS initiate failed [Caused by GSSException: No valid credentials provided (Mec...

CDH启用kerberos认证问题导致GSS initiate failed

jaysen1005的博客

03-20

1万+

问题描述：CDH启用Kerberos后使用beeline连接HiveServer2出错，错误信息如下: 解决方案：先进入CM管理界面，停止hive 然后在管理->安全界面点击Kerberos凭据在主体中找到hive所依赖的凭据，勾选后重新生成所选项。生成凭据然后启动hive，验证成功! 问题解决！！！ ...

IDVR.rar_Microgrid System_The Power_dual inverter _inverter pape

07-14

grid injecting modes. The proposed scheme has increased reliability, lower bandwidth requirement of the main inverter, lower cost due to reduction in filter size, and better utilization of microgrid ...

sub_active_3.rar_The Power

09-24

Data logger Power transision function switch among different power modes based on new ... This module has been tested on the renesus develop board with different LED to indicate different power modes.

《Sliding Modes after the First Decade of the 21st Century》.pdf

07-05

Leonid Fridman, Jaime H. Moreno, Rafael Iriarte,等. Sliding Modes after the First Decade of the 21st Century[M]. Springer Berlin Heidelberg, 2012.

Guided modes in the chiral negative refractive index fiber

02-26

We derive the characteristic equation of guided modes. Based on two types of chiral metamaterial parameters, we present the dispersion curves, energy flux, and power of guided modes. Some abnormal ...

Study of mode propagation with 632.8-nm laser in tapered fiber

02-10

When the cutoff frequency of the fiber is less than the laser frequency, the guiding modes of a single-mode fiber (at 1550 nm) are investigated. The results show that the original single-mode fiber ...

Authentication

Nancy 博客

12-18

1万+

认证 (Authentication) 身份验证需要可插拔。—— Jacob Kaplan-Moss, “REST worst practices” 身份验证是将传入请求与一组标识凭据 (例如请求来自的用户或其签名的令牌) 相关联的机制。然后，权限和限制策略可以使用这些凭据来确定是否应允许该请求。 REST framework 提供了一些开箱即用的身份验证方案，并且还允许您实现自定义方案。身份验...

认证 (authentication) 和授权 (authorization) 的区别.md

凌晨四点的洛杉矶

09-30

1万+

以前一直分不清 authentication 和 authorization，其实很简单：举个例子来说：你要登机，你需要出示你的身份证和机票，身份证是为了证明你张三确实是你张三，这就是 authentication；而机票是为了证明你张三确实买了票可以上飞机，这就是 authorization。在 computer science 领域再举个例子：你要登陆论坛，输入用户名张三，密...

keyberos认证问题导致GSS initiate failed

weixin_37933207的博客

11-15

3万+

背景：实施过程中需要./XX.sh 用来提交到大数据平台yarn上进行分析场景的任务提示了下列报错。 javax.security.sasl.SaslException: GSS initiate failed [Caused by GSSException: No valid credentials provided (Mechanism level: Failed to find any K...

win10远程桌面_WIN7/WIN10远程桌面连接提示--要求的函数不受支持如何解决

weixin_39997957的博客

11-18

563

最近WIN7升级补丁后发现远程桌面无法连接了，报“发生身份验证错误。要求的函数不受支持”的错误：WIN7/WIN10远程桌面连接提示--要求的函数不受支持如何解决An authentication error has occurred. The function requested is not supported.Windows 7 (win7)远程登录服务器以前都是正常的，今天登录远程桌面一直...

如何在Windows上启用和保护远程桌面

culintai3473的博客

09-15

2214

While there are many alternatives, Microsoft’s Remote Desktop is a perfectly viable option for accessing other computers, but it has to be properly secured. After recommended security measures are in...

Xcode 编译报错：Failed to initiate service connection to simulator

timtian008的博客

06-26

7280

Failed to initiate service connection to simulator Error returned in reply: Connection invalid 打开xcode，运行成功，后来点击模拟器，就没反应了，重新运行抛出这样一个提示框，清除缓存，从新运行还是一样！解决办法：需要关闭所有不同版本的xcode还有模拟器，重新打开运行就行了。原因因为打开了

关于hadoop+kerberos安全认证问题的报错GSS initiate failed 解决

狐狸叫

09-22

3万+

STARTUP_MSG: Starting DataNode STARTUP_MSG: host = cucrz-6/192.168.20.206 STARTUP_MSG: args = [] STARTUP_MSG: version = 1.2.1 STARTUP_MSG: build = https://svn.apache.org/repos/asf/hadoop

AssertionError: The environment must specify an action space.