在哪里可以获得用于开发的一次性 Active Directory 服务器?
我们不是 Windows 商店,但我们的产品之一需要选择性地与 Active Directory 集成 - 比如 SSO 等。
我真的不想经历设置整个服务器的繁琐过程只是为了针对它进行开发然后将其保留以进行测试。
是否有一种简单的基于云的服务,我可以购买运行 Active Directory 的服务器一两个月以用于开发目的?我研究了 Amazon EC2,但看起来您可能仍然需要进行重要的设置(我在这方面可能是错的)。
We're not a windows shop, but one of our products is going to need to optionally integrate with Active Directory - things like SSO etc.
I'd really rather not go through the rigamarole of setting up a whole server just to develop against it and then leave it hanging around for testing purposes.
Is there a simple cloud-based service where I can purchase a server running active directory for a month or two just for development purposes? I looked into Amazon EC2 but it looks like you may still need to go through a significant set up (I may be wrong on this).
如果你对这篇内容有疑问,欢迎到本站社区发帖提问 参与讨论,获取更多帮助,或者扫码二维码加入 Web 技术交流群。
绑定邮箱获取回复消息
由于您还没有绑定你的真实邮箱,如果其他用户或者作者回复了您的评论,将不能在第一时间通知您!
发布评论
评论(2)
即使您找到可以进行托管 AD 的提供商,我也不知道您是否能够避免随之而来的设置和配置。 Active Directory 可以通过多种不同的方式进行配置,因此对其进行充分测试确实需要的不仅仅是默认的普通 AD 域。 (我不得不处理太多的应用程序,这些应用程序对 Active Directory 的结构做出了毫无根据的假设,这令人恼火。帐户并不总是在默认的“用户”容器中!您可以森林中的多个域!有时 CN 不是用户 ID!)
无论如何......如果您确实想在云服务上托管 AD,这是可以做到的,但这种情况很少见,而且听起来很脆弱。以下是 Amazon Web Services 开发人员论坛上有关在 EC2 上使用 AD 的讨论的链接:
http://developer.amazonwebservices.com/connect/message.jspa?messageID=150845
garysu22 提供的文档看起来特别有用,但它也是 25 页的调整和解决方法...所以,同样,很多设置和配置。
顺便说一句,我担心 Amazon 关于在 EC2 上托管 AD 的白皮书,该白皮书曾经在这里...
http://developer.amazonwebservices.com/connect/entry.jspa?externalID=2435
...似乎丢失了。我不确定这意味着什么,但这会让我紧张。
(编辑:我不是唯一的一个:http://justinbrodley.com/?p=60)
现在回答您没有问的问题...
我已经使用运行 Windows Server 和 AD 的本地虚拟机非常成功地针对 Active Directory 进行了开发。我强烈推荐它。当然,您需要一台功能相当强大、具有充足内存和存储空间的机器,但任何现代开发盒都应该毫不费力地处理它。
通过这种设置,您可以获得虚拟机环境的所有优点,例如快照和回滚(这样您就可以破坏东西,甚至是故意的,并快速修复它)和简单的网络隔离(您可以使虚拟机仅对主机可见)例如,开发盒)...并且当您不需要时,只需挂起虚拟机即可使整个事情消失。
当然,您仍然需要完成初始 AD 设置和配置,但对于您需要的 AD 设置类型来说,这非常简单。如果您打算针对 AD 进行任何认真的开发,那么无论如何,这都是您想要拥有的宝贵经验。 Active Directory 本身就是一个庞然大物,具有超过其应有的特性。您了解得越多,您的客户就会越高兴。
祝你好运!
Even if you find a provider that can do hosted AD, I don't know if you'll be able to avoid the setup and configuration that goes along with it. Active Directory can be configured in so many different ways that adequately testing against it really demands more than just a default, vanilla AD domain. (I've had to deal with far too many applications that made unwarranted assumptions about how Active Directory is structured, and it's infuriating. Accounts aren't always in the default "Users" container! You can have multiple domains in a forest! Sometimes the CN isn't the userid! Aargh!)
Anyway... if you really do want to host AD on a cloud service, it can be done, but it's rare, and it sounds like it's fragile. Here's a link to a discussion on the Amazon Web Services developer forum about using AD on EC2:
http://developer.amazonwebservices.com/connect/message.jspa?messageID=150845
The document provided by garysu22 looks particularly useful, but it's also 25 pages of tweaks and workarounds... so again, lots of setup and configuration.
By the way, I'm concerned that Amazon's whitepaper on hosting AD on EC2, which used to be here...
http://developer.amazonwebservices.com/connect/entry.jspa?externalID=2435
...seems to have gone missing. I'm not sure what that means, but it would make me nervous.
(EDIT: I'm not the only one: http://justinbrodley.com/?p=60)
Now for an answer to a question you didn't ask...
I've developed against Active Directory very successfully using a local virtual machine running Windows Server and AD. I highly recommend it. You'll need a reasonably powerful machine with plenty of memory and storage, of course, but any modern development box should handle it without breaking a sweat.
With this sort of setup, you get all the niceties of a VM environment, like snapshot and rollback (so you can break stuff, even deliberately, and fix it quickly) and easy network isolation (you can make the VM visible to just the host dev box, for example)... and you can make the entire thing go away when you don't need it by just suspending the VM.
Of course, you'll still have to go through the initial AD setup and configuration, but for the kind of AD setup(s) you'll need, that's pretty easy. If you're going to be doing any serious development against AD, that's valuable experience you'll want to have anyway. Active Directory is its own sort of beast, with more than its fair share of idiosyncrasies; the better you understand it, the happier your customers will be.
Good luck!
我认为您需要AD 轻量级目录服务。您可以在任何服务器上运行它,而无需经历整个 AD 设置/强化过程。您将无法针对它使用所有 AD 工具(用户和计算机以及信任 MMC 插件),但它的行为类似于 AD 进行原型设计和开发。如果您看到有关 ADAM(Active Directory 应用程序模式)的帖子,AS LDS 只是同一想法的最新名称。
I think you want AD Lightweight Directory Service. You can run it on any server without going through the whole AD setup/hardening process. You won't be able to use all of the AD tools against it (Users and Computers, and Trusts MMC plugins), but it will behave like AD for prototyping and development. If you see posts about ADAM (Active Directory Application Mode), AS LDS is just the latest name of the same idea.