有关，你可能会更好只是停留完全在LDAP和不冒险进入的Kerberos。 Kerberos的给你好处单点登录的，但因为你的Andr​​oid应用程序没有任何凭据已经到位它并没有真正帮助您。我想谷歌有自己的理由不包括javax.naming中进入发行。这是pretty的沉重的东西。

For that you might be better off just staying completely within LDAP and don't venture into the kerberos. Kerberos gives you advantage of Single Sign On, but since your android app doesn't have any credentials already in place it doesn't really help you. I guess google had their own reasons not to include the javax.naming into the distro. It is pretty heavy stuff.

您也许能任一端口的自己从Java运行时库源的东西，或者使用本地LDAP库可能会更好。例如，这 之一。

You might be able to either port the stuff yourself from java runtime library sources, or might be better off using native LDAP library. For example this one.

不过，别忘了使用安全LDAP连接或至少是安全的身份验证方法。有关这方面更多的信息是这里。

Just remember to use secure LDAP connection or at least secure authentication method. More info about this is here.