Questions tagged [ntlm]

NTLM (NT LAN Manager) is a suite of Microsoft security protocols that provides authentication, integrity, and confidentiality to users.

NTLM has been deprecated for many uses as it doesn't support the latest standards:

Implementers should be aware that NTLM does not support any recent cryptographic methods, such as AES or SHA-256. It uses cyclic redundancy check (CRC) or message digest algorithms (RFC1321) for integrity, and it uses RC4 for encryption. Deriving a key from a password is as specified in RFC1320 and FIPS46-2. Therefore, applications are generally advised not to use NTLM - MSDN and to use Kerberos instead.

Despite this NTLM is still used inside enterprise networks where Microsoft Active Directory provides the enterprise directory service for Integrated Windows Authentication when Kerberos is not available.

NTLM over HTTP handshake is fairly simple:

Request  - [unauthenticated - no user info passed]

Response - 401 Unauthorized
           WWW-Authenticate: NTLM


Request  - Authorization: NTLM <base64-encoded type-1-message>

Response - 401 Unauthorized
           WWW-Authenticate: NTLM <base64-encoded type-2-message>


Request  - Authorization: NTLM <base64-encoded type-3-message>

           Server can now check username/password against LDAP from type-3 message
Response - 200 Ok [now authenticated & authorised]

1230 questions

votes

1 answer

Authorise with current user credentials for Python script accessing SharePoint list using NTLM

I have a script that checks a SharePoint list for a specific file revision and returns the result. This works well, but currently my authorisation method requires me to include my own password in the code to gain access to the SharePoint list, which…

asked Jan 25 '16 at 11:49

Steve McLoughlin

votes

1 answer

SignalR asks for authentication credentials with 401

I have a .Net 4.5 website with MVC, Web API, and SignalR, and using Windows authentication. Everything runs great until I add the hubs to my HTML with: @Scripts.Render("~/signalr/hubs") With this line in place, about 1/3 of the time when I hit F5…

c# asp.net signalr ntlm http-status-code-401

asked Dec 08 '15 at 21:17

user47589

votes

1 answer

URLDownloadToFile and Authentication

I'm working on some old ATL OCX, that is used as "download manager". It downloads files using URLDownloadToFile API. Previously, it was hosted as ActiveX on web page so in case the server required authentication it was done by IE. Now it is part of…

c++ authentication download ntlm urlmon

asked Jul 29 '10 at 15:04

Zaky

votes

1 answer

How to distinguish between ntlm & ntlmv2 authentication

I'm viewing some legacy code and attempting to determine if the application is using ntlm or ntlmv2. Viewing the source the response header set to "WWW-Authenticate", "NTLM". But I'm not sure if this is an indication of the authentication type. How…

ntlm ntlmv2

asked Aug 05 '15 at 15:51

blue-sky

51,962
152
427
752

votes

2 answers

Automatically authenticating windows users on an apache/Linux server

If I wanna authenticate windows accounts to AD when a user browses to an apache-running site on a Linux server, here are the usual suspects: List item mod_ntlm (which I used in a distant past) - last update on 2003 mod_auth_ntlm_winbind - last…

windows linux apache authentication ntlm

asked Jun 11 '10 at 12:36

Peter Carrero

1,596
2
13
13

votes

1 answer

git client using GSSAPI for NTLM proxy authentication

Like many, Im trying to access github.com from behind a corporate proxy. Apparently* curl (via libcurl) now includes GSSAPI support for NTLM proxy authentication without having to manually divulge username and password. Since git client uses…

git curl github proxy ntlm

asked Mar 30 '15 at 04:53

JonT

votes

1 answer

Camel http4 and url-encoded passwords being interpreted as separate arguments

We've got an Apache Camel (2.13.2) app that uses http4 to communicate with a webserver, using NTLM for auth. The endpoint is defined as (pseudo): ... .to("http4://thegreat.server.com/uri?authUsername=" + user + "&authPassword=" + pass +…

url apache-camel ntlm

asked Sep 17 '14 at 06:14

jhberges

votes

2 answers

javax.naming.AuthenticationException in GSSAPI

I'm trying to perform NTLM bind using JAVA GSSAPI. I'm receiving this error: javax.naming.AuthenticationException: GSSAPI [Root exception is javax.security.sasl.SaslException: GSS initiate failed [Caused by GSSException: No valid credentials…

java security kerberos ntlm gssapi

asked Apr 15 '13 at 08:11

Matan

votes

2 answers

Connecting to NTLMv2 from Java\httpclient 3\linux

I am using MAC and LINUX, java6 and apache http-client 3.1 to connect to sharepoint with NTLM auth. I connect to ntlm using http://jcifs.samba.org/ and it worked fine until I had to connect to NTLMv2. I tried this …

java authentication httpclient ntlm ntlmv2

asked Mar 14 '13 at 12:50

dov.amir

11,489
7
45
51

votes

2 answers

How do I download a protected file using PowerShell?

I am trying to download a file using PowerShell 3.0 from my TeamCity build server. I have configured TeamCity to use NTLM authentication but I cannot download the file directly and get redirected to login. I am trying to use the following PowerShell…

powershell teamcity ntlm powershell-3.0 teamcity-7.0

asked Jan 09 '13 at 16:46

Aaron Weiker

2,523
2
21
22

votes

1 answer

Does AFNetworking support NTLM authentication?

Does AFNetworking support NTLM authentication? I know ASIHTTPRequest can do it, i'm trying to migrate to AFNetworking, but i have to be sure it will be able to deal with it. I really searched the internet for this, but i was unable to find this…

ios afnetworking ntlm

asked Nov 25 '12 at 05:01

Crystian Leão

votes

2 answers

JAX-WS IBM client consuming .Net WS with Active Directory authentication (NTLM)

I want to consume .Net WS from IBM WebSphere. I created a WS-client with JAX-WS IBM implementation that consumes a .Net WS on IIS. The client is on SUSE and the authentication is by NTLM with Windows Server 2003 Active Directory. If the client is…

.net active-directory websphere jax-ws ntlm

asked Sep 04 '12 at 15:56

Jonathan Barbero

2,504
1
26
47

votes

3 answers

Could I use interactive proxy authentication with git-svn?

I'm behind an authenticating proxy and need to access a remote SVN repo over https using git svn. The proxy is defined in my ~/.subversion/servers file. When I start with git svn fetch, I get an error message: RA layer request failed: OPTIONS of…

git svn proxy git-svn ntlm

asked Jul 12 '12 at 06:50

eckes

64,417
29
168
201

votes

1 answer

Office365 Sharepoint Webservices access via Java - Axis2

We are currently building a Java based server that can interact with Sharepoint 2007/2010 and the Office365 version webservices via Axis2. It seems that we can get Basic/NTLM authentication to work with the Sharepoint 2007/2010 but not with the…

sharepoint apache-axis ntlm claims-based-identity office365

asked May 09 '12 at 15:25

Cheezo

votes

1 answer

How do I authenticate a console application with a WCF web service using NTLM?

I have a WCF web service using basicHttpBinding with NTLM hosted on IIS 7 (anonymous authentication disabled and Windows authentication enabled). AppPool using pass-through authentication. I have a console application remotely connecting to the…

wcf authentication ntlm

asked Apr 25 '12 at 19:28

Jordan Parmer

36,042
30
97
119

Prev 1 2 3

…

81 82 Next