Although JNDI is part of J2SE rather than J2EE, name servers are most commonly used with enterprise applications, many of which use J2EE. The underlying Service Provider implements the security for the naming and directory service. To all intents and purposes, a secure directory service uses LDAP or a service that has an LDAP interface (Active Directory or NDS).
You may want to check back to Day 3, “Naming and Directory Services,” to remind yourself about JNDI before reading the rest of this section.
LDAP security is based on three categories:
anonymous No security information is provided
simple The client provides a clear text name and password
Simple Authentication and Security Layer (SASL) The client and server negotiate an ...