How does authentication work in MAPI/HTTP

Question

I am trying to understand how authentication in MAPI/HTTP protocol works. I read through the documents that protocol supports basic authentication scheme, NT LAN Manager (NTLM) Authentication Protocol, and Negotiate Ref MS-OXCMAPIHTTP#1.7.

So I have setup an Outlook365 account. While debugging (TLS session) I do see that server always asks for WWW-Authenticate: Basic Realm=. I did understand how does that work. But I fail to see any reference of NTLM or Negotiate. The document(s) does not provide any examples of either.

Online search is almost always fruitless about this topic.

I would appreciate some pointers or s'more documents or examples.

score 0 · Answer 1 · answered Aug 20 '15 at 20:39

0

In enterprise environments is most of the cases SPNEGO with Kerberos.

answered Aug 20 '15 at 20:39

Michael-O

18,123
6
55
121

score 0 · Answer 2 · answered Aug 21 '15 at 05:28

0

There's a registry of HTTP authentication schemes at http://www.iana.org/assignments/http-authschemes/http-authschemes.xhtml, with pointers to specifications. (And yes, "NTLM" isn't registered; complain to Microsoft...).

answered Aug 21 '15 at 05:28

Julian Reschke

40,156
8
95
98

How does authentication work in MAPI/HTTP

2 Answers2