\u5728\u8cc7\u6599\u5eab\u7684\u4e16\u754c\u4e2d\uff0cMongoDB \u56e0\u5176\u9748\u6d3b\u6027\u3001\u53ef\u64f4\u5c55\u6027\u53ca\u6613\u7528\u6027\u800c\u5ee3\u53d7\u6b61\u8fce\u3002MongoDB \u63d0\u4f9b\u7684\u773e\u591a\u529f\u80fd\u4e4b\u4e00\u662f\u8207 LDAP \u7684\u6574\u5408\u3002\u672c\u6587\u5c07\u63a2\u8a0e\u4ec0\u9ebc\u662f LDAP\uff0c\u4ee5\u53ca\u5982\u4f55\u5c07\u5176\u8207 MongoDB \u4e00\u8d77\u4f7f\u7528\u3002<\/p>\n
LDAP \u4ee3\u8868\u8f15\u91cf\u7d1a\u76ee\u9304\u8a2a\u554f\u5354\u8b70\uff08Lightweight Directory Access Protocol\uff09\u3002\u9019\u662f\u4e00\u7a2e\u958b\u653e\u4e14\u8207\u4f9b\u61c9\u5546\u7121\u95dc\u7684\u5354\u8b70\uff0c\u7528\u65bc\u901a\u904e IP \u7db2\u7d61\u8a2a\u554f\u548c\u7dad\u8b77\u5206\u4f48\u5f0f\u76ee\u9304\u8cc7\u8a0a\u670d\u52d9\u3002LDAP \u5e38\u7528\u65bc\u96c6\u4e2d\u5f0f\u8eab\u4efd\u9a57\u8b49\u53ca\u6388\u6b0a\u670d\u52d9\uff0c\u9019\u4f7f\u5176\u6210\u70ba\u5927\u578b\u7d44\u7e54\u7ba1\u7406\u7528\u6236\u5e33\u6236\u548c\u8a2a\u554f\u63a7\u5236\u7684\u7406\u60f3\u9078\u64c7\u3002<\/p>\n
LDAP \u76ee\u9304\u5177\u6709\u5c64\u6b21\u7d50\u69cb\uff0c\u6309\u6a39\u72c0\u7d50\u69cb\u7d44\u7e54\u3002\u76ee\u9304\u4e2d\u7684\u6bcf\u500b\u689d\u76ee\u4ee3\u8868\u4e00\u500b\u5c0d\u8c61\uff0c\u4f8b\u5982\u7528\u6236\u3001\u7fa4\u7d44\u6216\u8a2d\u5099\uff0c\u4e26\u7531\u552f\u4e00\u7684\u5340\u5206\u540d\u7a31\uff08DN\uff09\u6a19\u8b58\u3002DN \u7531\u4e00\u7cfb\u5217\u5c6c\u6027\u7d44\u6210\uff0c\u63cf\u8ff0\u5c0d\u8c61\u5728\u76ee\u9304\u6a39\u4e2d\u7684\u4f4d\u7f6e\u3002<\/p>\n
MongoDB \u63d0\u4f9b\u5167\u5efa\u7684 LDAP \u9a57\u8b49\u652f\u63f4\uff0c\u5141\u8a31\u60a8\u5229\u7528\u73fe\u6709\u7684 LDAP \u57fa\u790e\u8a2d\u65bd\u9032\u884c\u7528\u6236\u8eab\u4efd\u9a57\u8b49\u548c\u6388\u6b0a\u3002\u901a\u904e\u5c07 MongoDB \u8207 LDAP \u6574\u5408\uff0c\u60a8\u53ef\u4ee5\u96c6\u4e2d\u7ba1\u7406\u7528\u6236\uff0c\u4e26\u7c21\u5316\u9a57\u8b49\u904e\u7a0b\u3002<\/p>\n
\u7576\u555f\u7528 LDAP \u9a57\u8b49\u6642\uff0cMongoDB \u6703\u4f5c\u70ba LDAP \u5ba2\u6236\u7aef\uff0c\u9023\u63a5\u5230 LDAP \u4f3a\u670d\u5668\u4f86\u9a57\u8b49\u7528\u6236\u3002LDAP \u4f3a\u670d\u5668\u6703\u901a\u904e\u6aa2\u67e5\u5b58\u5132\u65bc LDAP \u76ee\u9304\u4e2d\u7684\u8cc7\u6599\u4f86\u9a57\u8b49\u7528\u6236\u6191\u8b49\u3002<\/p>\n
LDAP \u8207 MongoDB \u7684\u6574\u5408\u5177\u6709\u591a\u7a2e\u512a\u9ede\uff1a<\/p>\n
\u8981\u5728 MongoDB \u4e2d\u555f\u7528 LDAP \u9a57\u8b49\uff0c\u60a8\u9700\u8981\u5728 MongoDB \u914d\u7f6e\u6a94\u6848\u4e2d\u914d\u7f6e LDAP \u8a2d\u5b9a\u3002\u8a72\u914d\u7f6e\u5305\u62ec\u6307\u5b9a LDAP \u4f3a\u670d\u5668\u7684\u5730\u5740\u3001\u57e0\u865f\u53ca\u7528\u6236\u641c\u5c0b\u7684\u57fa\u790e DN\u3002<\/p>\n
\u4e00\u65e6\u555f\u7528\u4e86 LDAP \u9a57\u8b49\uff0cMongoDB \u6703\u6839\u64da LDAP \u4f3a\u670d\u5668\u4f86\u9a57\u8b49\u7528\u6236\u3002\u5982\u679c\u9a57\u8b49\u6210\u529f\uff0cMongoDB \u5c07\u6839\u64da MongoDB \u8cc7\u6599\u5eab\u4e2d\u5b9a\u7fa9\u7684\u89d2\u8272\u548c\u6b0a\u9650\u6388\u6b0a\u8a72\u7528\u6236\u3002<\/p>\n
\u4ee5\u4e0b\u662f MongoDB \u4e2d LDAP \u914d\u7f6e\u7684\u7bc4\u4f8b\uff1a<\/p>\n
security:\r\n ldap:\r\n servers: ldap.example.com:389\r\n bind:\r\n method: simple\r\n username: \"cn=admin,dc=example,dc=com\"\r\n password: \"password\"\r\n userToDNMapping:\r\n \"emailAddress\": \"mail\"\r\n userSearch:\r\n baseDN: \"ou=users,dc=example,dc=com\"\r\n filter: \"(uid={{username}})\"\r\n<\/code><\/pre>\n\u5728\u9019\u500b\u7bc4\u4f8b\u4e2d\uff0cLDAP \u4f3a\u670d\u5668\u4f4d\u65bc ldap.example.com\uff0c\u4f7f\u7528\u57e0\u865f 389\u3002\u7d81\u5b9a\u6191\u8b49\u901a\u904e\u300csimple\u300d\u65b9\u6cd5\u6307\u5b9a\u4e86 admin \u7528\u6236\u540d\u548c\u5bc6\u78bc\u3002userToDNMapping \u5c07\u7528\u6236\u7684\u96fb\u5b50\u90f5\u4ef6\u5730\u5740\u6620\u5c04\u5230 LDAP \u5c6c\u6027\u300cmail\u300d\u3002userSearch \u6307\u5b9a\u4e86\u641c\u5c0b\u7528\u6236\u689d\u76ee\u7684\u57fa\u790e DN \u548c\u7be9\u9078\u689d\u4ef6\u3002<\/p>\n
\u7e3d\u7d50<\/h2>\n
LDAP \u8207 MongoDB \u7684\u6574\u5408\u5141\u8a31\u60a8\u5229\u7528\u73fe\u6709\u7684 LDAP \u57fa\u790e\u8a2d\u65bd\u9032\u884c\u7528\u6236\u8eab\u4efd\u9a57\u8b49\u53ca\u6388\u6b0a\u3002\u901a\u904e\u96c6\u4e2d\u7ba1\u7406\u7528\u6236\u4e26\u7c21\u5316\u8eab\u4efd\u9a57\u8b49\u904e\u7a0b\uff0cLDAP \u6574\u5408\u589e\u5f37\u4e86\u5b89\u5168\u6027\uff0c\u4e26\u63d0\u4f9b\u4e86\u7121\u7e2b\u7684\u7528\u6236\u9ad4\u9a57\u3002\u5982\u9700\u4e86\u89e3\u66f4\u591a\u95dc\u65bc MongoDB \u53ca\u5176\u529f\u80fd\u7684\u8cc7\u8a0a\uff0c\u8acb\u8a2a\u554f Server.HK<\/a>\u3002<\/p>\n","protected":false},"excerpt":{"rendered":"MongoDB \u8a5e\u5f59\u8868 R...<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[4925],"tags":[],"class_list":["post-21567","post","type-post","status-publish","format-standard","hentry","category-4925"],"_links":{"self":[{"href":"https:\/\/server.hk\/cnblog\/wp-json\/wp\/v2\/posts\/21567","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/server.hk\/cnblog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/server.hk\/cnblog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/server.hk\/cnblog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/server.hk\/cnblog\/wp-json\/wp\/v2\/comments?post=21567"}],"version-history":[{"count":1,"href":"https:\/\/server.hk\/cnblog\/wp-json\/wp\/v2\/posts\/21567\/revisions"}],"predecessor-version":[{"id":23881,"href":"https:\/\/server.hk\/cnblog\/wp-json\/wp\/v2\/posts\/21567\/revisions\/23881"}],"wp:attachment":[{"href":"https:\/\/server.hk\/cnblog\/wp-json\/wp\/v2\/media?parent=21567"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/server.hk\/cnblog\/wp-json\/wp\/v2\/categories?post=21567"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/server.hk\/cnblog\/wp-json\/wp\/v2\/tags?post=21567"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}