tags:

views:

1030

answers:

7
+4  Q: 

Alternatives for JCIFS NTLM library

Are there any alternatives for JCIFS NTLM library?

A: 

jespa www.ioplex.com is the only one I've come across. Never used it though

Ben Hammond  2009-05-27 16:51:25
A: 

To be honest, you should not look for one. For your SSO needs you should use proper kerberos / SPNEGO instead of the legacy NTLM.

For that stuff you need no special libraries as JVMs are already enabled for doing that automatically. All you have to do is to configure your application and JVM security policies properly. The official documentation from Sun should give you all the details you need, just browse the "security APIs" section.

 2009-07-18 22:11:34
NTLM is not a "legacy" mechanism. NTLM is required if the client cannot get a Kerberos ticket which unfortunately happens all too easily. In fact, Kerberos is rather fragile and difficult to use by comparison. And NTLMv2 is just as secure (128 bit RC4 vs. 256 bit AES really doesn't matter much). If you need to do client-side NTLM, JCIFS is fully functional (albeit it is not fully documented - ask on the mailing list). If you need server-side NTLM such as for HTTP SSO, Jespa is the way to go.
 2009-10-10 01:31:04
Note that Jespa is not free software.
Thorbjørn Ravn Andersen  2010-07-21 14:34:09
+1  A: 

I think NTLM is being deprecated in favor of Kerberos/SPNEGO. Take a look at the SPNEGO HTTP Servlet Filter project to see if it might fit your needs.

Pat Gonzalez  2009-11-04 16:31:51
+1  A: 

Java Opensource Single Sign On (JOSSO) is at http://www.josso.org/ They have a page on NTLM, although I'm not sure how well it works.

John  2010-01-09 11:01:05
A: 

Has anyone checked out this? Any feedback and how to use it? http://tomcatspnego.codeplex.com/

mxz  2010-03-24 19:41:13
+4  A: 

Waffle - http://waffle.codeplex.com

Has filters, authenticators, supports spring-security, etc. Windows-only, but doesn't require native DLLs.

dblock  2010-05-21 11:06:59
Interesting project!
Thorbjørn Ravn Andersen  2010-08-12 11:50:36
+1  A: 

If you don't mind a commercially packaged product then take a look at: Quest Single Sign On for Java which provides support for SPNEGO/Kerberos (including sites and S4U protocols) as well as NTLM.

Dean Povey  2010-06-01 11:27:46

related questions

Java Time Zone is messed up
Eclipse on win64
Automate builds for Java RCP for deployment with JNLP
Why are professors or schools picking Java over C++ to teach to students?
Is there a real benefit of using J#?
Public/Popular Websites using JavaServer Faces
Why can't I use a try block around my super() call?
Accessing post variables using Java Servlets
Personal Linux web server
Is this really widening vs autoboxing?
How can I Java webstart multiple, dependent, native libraries?
Why can't I call toString() on a Java primitive?
How do I use Java to read from a file that is actively being written?
What code analysis tools do you use for your Java projects?
IllegalArgumentException or NullPointerException for a null parameter?
How do I configure and communicate with a serial port?
What is the best way to parse strings in Java
Getting started with a custom JXTA PeerGroup
Creating a custom button in Java
How to get started "writing" a code coverage tool?
Which Build-/Configuration Management Tool?
What is the difference between an int and an Integer in Java/C#?
What is the meaning of the type safety warning in certain Java generics casts?
How would you access Object properties from within an object method?
Converting CSV File to XML in Java