Questions tagged [ntlm]

NTLM (NT LAN Manager) is a suite of Microsoft security protocols that provides authentication, integrity, and confidentiality to users.

NTLM has been deprecated for many uses as it doesn't support the latest standards:

Implementers should be aware that NTLM does not support any recent cryptographic methods, such as AES or SHA-256. It uses cyclic redundancy check (CRC) or message digest algorithms (RFC1321) for integrity, and it uses RC4 for encryption. Deriving a key from a password is as specified in RFC1320 and FIPS46-2. Therefore, applications are generally advised not to use NTLM - MSDN and to use Kerberos instead.

Despite this NTLM is still used inside enterprise networks where Microsoft Active Directory provides the enterprise directory service for Integrated Windows Authentication when Kerberos is not available.

NTLM over HTTP handshake is fairly simple:

Request  - [unauthenticated - no user info passed]

Response - 401 Unauthorized
           WWW-Authenticate: NTLM


Request  - Authorization: NTLM <base64-encoded type-1-message>

Response - 401 Unauthorized
           WWW-Authenticate: NTLM <base64-encoded type-2-message>


Request  - Authorization: NTLM <base64-encoded type-3-message>

           Server can now check username/password against LDAP from type-3 message
Response - 200 Ok [now authenticated & authorised]

1230 questions

votes

0 answers

NTLM authentication in WebView without providing password explicitly

I'm wondering if it is possible to access a Windows Authentication web service from an Android client without the Android app having access to the user's password. For example, the Chrome Android app prompts for username/password when trying to…

asked Feb 06 '14 at 20:15

Will Ferguson

votes

3 answers

How can I tell what type of authentication a server is using?

I have to access a web server at http://someserver and it requires some authentication. How can I tell if it is using NTLM, Kerberos or whatever it may be?

authentication kerberos ntlm

asked Jan 27 '10 at 23:01

Matt

25,943
66
198
303

votes

1 answer

Unable to get maven to download from HTTPS URLs behind proxy

From the dependencies that I specify in my pom.xml, the ones that use HTTP URLs gets downloaded but the ones that use HTTPS URLs fails saying: SEVERE: Proxy authentication error: Credentials cannot be used for NTLM authentication:…

ubuntu https proxy maven-2 ntlm

asked Jul 31 '13 at 07:33

codemaniac

votes

1 answer

Java : HTTP(S)/WebServices connections through NTLM proxy

We have a java client side application deployed in our customer (a java application, not an applet). This application checks connectivity with an url.openConnection() and calls web services (with CXF/JAX-WS) through internet. Some of our customer…

java proxy httpurlconnection ntlm

asked Jul 08 '13 at 12:49

Nicolas A.

votes

1 answer

Microsoft ISA Server Authentication in Android

I have an application in Android, in which I were reading files from the remote server, code for reading file is given below; URI uri = null; try { uri = new URI("http://192.168.1.116/Server1/Users.xml"); …

java android security ntlm

asked May 10 '13 at 07:25

Siddiqui

7,662
17
81
129

votes

7 answers

Retrieve NTLM Active Directory user data to Rails w/o IIS

I believe that we can allow Firefox to sent NTLM data to SharePoint sites to do automatic authentication, and I think that this is doable with IIS. I'd like to do the same thing with an internal Rails site. Does anyone know of way that I could…

ruby-on-rails active-directory ntlm

asked Sep 29 '08 at 20:11

Nick Ryberg

1,134
4
14
20

votes

3 answers

Python urllib2 HTTPS and proxy NTLM authentication

urllib2 doesn't seem to support HTTPS with proxy authentication in general, even less with NTLM authentication. Anyone knows if there is a patch somewhere for HTTPS on proxy with NTLM authentication. Regards, Laurent

python authentication proxy https ntlm

asked Sep 26 '09 at 15:03

Laurent Luce

votes

2 answers

Python NTLM login

I am trying to pull information from a url that requires NTLM login. I originaly received 401 error and after some tweaks have been able to pull the page stating that I have input invalid credentials. The username and password are correct yet I…

python urllib2 ntlm

asked Nov 02 '12 at 03:36

Joe N.

votes

4 answers

Intranet website authentication using windows logon

I'm building an internal website in Perl and I would like to get it to use Windows credentials for authentication. My research so far has turned up a lot of keywords: Kerberos, LDAP, NTLM, etc, but no solid information. Anyone got pointers or good…

windows authentication webserver ntlm

asked Aug 04 '09 at 12:53

aidan

9,310
8
68
82

votes

3 answers

authenticate with ntlm (or kerberos) using java UrlConnection

I need to consume a rest web service with java, passing the credentials of a domain user account. right now I'm doing it with classic asp set xmlHttp = server.createObject( "msxml2.serverxmlhttp" ) xmlHttp.open method, url, false, domain & "\" &…

java authentication kerberos ntlm httpurlconnection

asked Jul 22 '09 at 21:57

opensas

60,462
79
252
386

votes

3 answers

Determine if browser supports windows integrated authentication

Is there a way to determine if a browser supports NTLM without having NTLM enabled for the particular site or directory in IIS and without showing a login dialog/pop-up? Preferably, determine this using ColdFusion or perhaps some combination of JS…

javascript iis coldfusion ntlm

asked Jun 22 '09 at 20:51

illvm

1,336
13
28

votes

2 answers

HttpClient using both SSL encryption and NTLM authentication fails

I'm trying to do simple REST calls on a Sharepoint 2010 server that uses SSL encryption (https), as well as NTLM authentication. When the server is set up to not require SSL (just for testing, the server will require SSL in production), my NTLM…

java ssl sharepoint-2010 httpclient ntlm

asked Mar 15 '12 at 05:48

PaulP

votes

5 answers

NTLM Authentication in ColdFusion

Is there a recommended (and preferably free) way in ColdFusion to access a remote file that is protected by NTLM authentication? The cfhttp tag appears to only support Basic authentication.

coldfusion ntlm

asked May 21 '09 at 21:45

Soldarnal

7,558
9
47
65

votes

1 answer

Metro client hangs when calling WCF webserver with wsHttpBinding

I have generated a webservice client with a local wsdl using Metro 1.2 this way: ./wsimport.sh -extension -verbose -wsdllocation service.wsdl -s src -d target service.wsdl -Xendorsed The wsdl uses SOAP 1.2 and wsHttpBinding. It's supposed to…

wcf jakarta-ee wsdl ntlm java-metro-framework

asked Aug 15 '11 at 16:23

Oscar

votes

2 answers

Java client for SOAP web service with NTLM authentication

I spent many days and nights trying to find a proper Java framework that could connect to Microsoft Dynamics CRM which uses Negotiate/NTLM authentication. I tried all existing suggestions on Stackoverflow and other resources with JAX-WS, Axis2, CXF…

java apache-axis cxf ntlm

asked Aug 02 '11 at 11:52

Jiří Vypědřík

1,324
12
24

Prev 1 2 3

…

81 82 Next