Java – authenticate Active Directory via Kerberos

I'm building an Android application that requires different levels of authentication. I want to use active directory to do this

From what I can see, using Kerberos is the way recommended by Microsoft What should I do with this Android? I saw javax security. Auth doc, but it doesn't tell me much

I also see a comment that Kerberos does not contain user groups - is this true? In this case, will I have to combine LDAP?

edit

The main goal here is to realize the LDAP connection with the active directory, so as to authenticate the enterprise Android application and provide users with correct permissions The real obstacle here is that Google has removed many Java Web Services APIs from its port to Android (i.e. javax. Naming) in addition, many connection mechanisms in Android jar seem to be contained only in legacy code, but they actually do nothing

Solution

At this point, you might be better off staying completely within LDAP and not venturing into Kerberos Kerberos provides you with the advantage of single sign on, but because your Android application doesn't have any credentials in place, it doesn't really help you I guess Google has its own reason not to put javax Naming is included in the distribution This is a heavy thing

You may be able to run this content automatically from a Java runtime library source, or you may be better suited to using a native LDAP library For example, this one

Just remember to use a secure LDAP connection or at least a secure authentication method More information about this is here