Questions tagged [ntlm]

NTLM (NT LAN Manager) is a suite of Microsoft security protocols that provides authentication, integrity, and confidentiality to users.

NTLM has been deprecated for many uses as it doesn't support the latest standards:

Implementers should be aware that NTLM does not support any recent cryptographic methods, such as AES or SHA-256. It uses cyclic redundancy check (CRC) or message digest algorithms (RFC1321) for integrity, and it uses RC4 for encryption. Deriving a key from a password is as specified in RFC1320 and FIPS46-2. Therefore, applications are generally advised not to use NTLM - MSDN and to use Kerberos instead.

Despite this NTLM is still used inside enterprise networks where Microsoft Active Directory provides the enterprise directory service for Integrated Windows Authentication when Kerberos is not available.

NTLM over HTTP handshake is fairly simple:

Request  - [unauthenticated - no user info passed]

Response - 401 Unauthorized
           WWW-Authenticate: NTLM


Request  - Authorization: NTLM <base64-encoded type-1-message>

Response - 401 Unauthorized
           WWW-Authenticate: NTLM <base64-encoded type-2-message>


Request  - Authorization: NTLM <base64-encoded type-3-message>

           Server can now check username/password against LDAP from type-3 message
Response - 200 Ok [now authenticated & authorised]

1230 questions

votes

1 answer

ASP.NET Web API - NTLM authentication and HTTPS

I have the following configuration: self-hosted ASP.NET Web API ASP.NET MVC 3 web application Web app [2] comunicates with Web API [1] over HTTPS. They both (for now) live on the same machine. Http binding for the Web API [1] is configured like…

asked Jan 14 '13 at 10:43

Jacek Nowak

votes

0 answers

NTLM support for Savon

I'm using Savon to communicate with SharePoint using web services. Everything is working fine if SharePoint web application supports basic authentication, but if I change it to NTLM it fails. It fails at line newclient.http.auth.ntlm(username,…

sharepoint ntlm savon

asked Dec 27 '12 at 06:44

Baba

votes

3 answers

Configure kerberos without krb5.conf

I'm using kerberos authentication to login to ActiveDirectory. I'm doing it with GSSAPI. Currently, I'm using krb5.conf file, that describes the realms, encryption algs and more, and the authentication works fine. I would like avoid using this file.…

java security kerberos ntlm gssapi

asked Dec 18 '12 at 11:19

Matan

votes

2 answers

Cannot get JMeter to authenticate against site during recording

I am new to Jmeter and have the following problem. It has wasted a couple of days for me so far and I really hope someone can help: When I go to record the login page of the website (IIS hosted, Windoes Authentication) I ultimately receive a 401…

proxy jmeter ntlm intranet

asked Sep 20 '12 at 10:16

Eoin

votes

2 answers

Uploading with HTTPSendRequest

I have to send files to a php script with delphi. I finaly chose to use Wininet functions because I have to pass through a NTLM Authentication proxy. When i send the file, I have empty chars (00) between each chars of my content request : POST…

delphi proxy ntlm wininet

asked Sep 05 '12 at 08:39

thomaf

votes

2 answers

SSO for SSRS management site

Our web application uses NTLM authentication and it's working. Is it possible to use the same logon credentials to automatically login to the report manager, actually we would like to be able to navigate from our web app to the report manager…

reporting-services ssrs-2008 single-sign-on ntlm

asked Aug 17 '12 at 05:04

Joe.wang

11,537
25
103
180

votes

1 answer

Using WWW::Mechanize Credentials

I am having trouble using the credentials agent for WWW:Mechanize to access and web scrape a site that requires NTLM authentication. I read online that the credentials agent requires 4 arguments: a base, realm, username and password. I'm not sure…

perl credentials ntlm www-mechanize

asked Aug 13 '12 at 19:30

user1596292

votes

5 answers

NTLM authentication for a web server side application

My Windows based application written in C++ ( basically an HTTP/1.1 proxy server) listens for requests from various users. Presently it is able to send a 407 Basic Challenge, and process the response from the Headers. I know I must modify the…

c++ c ntlm http-authentication

asked Jul 23 '09 at 07:51

mdk

6,225
1
25
30

votes

0 answers

Eclipse Indigo: can I use/patch m2e with NTLM?

We are experiencing an issue with Eclipse Indigo and the new M2E plugin for Maven support. I installed on the same machine: Maven 3.04 command line, with a patch for NTLM proxy. This works perfect and seamless. Then I installed Eclipse Indigo with…

eclipse maven m2eclipse ntlm m2e

asked Jun 19 '12 at 15:35

polleke

votes

5 answers

how to access Cmis without a password?

I'm trying to query Alfresco through cmis with DotCmis ( http://chemistry.apache.org/dotnet/dotcmis.html ) It's working ok as long as I specify a user / password. How can I do that without specifying a password ? I'd like to use the CurrentIdentity…

c# alfresco ntlm cmis dotcmis

asked May 09 '12 at 15:35

Vincent

votes

0 answers

NLTM auth using HttpUrlConnection failing

I am trying to authenticate against a server supporting NTLM authentication in my Java application using java.net's HttpUrlConnection. The problem is that the application fails to send the Authenticate response. I have attached proxy to the http…

java httpurlconnection ntlm

asked Apr 25 '12 at 09:59

Bonton255

2,231
3
28
44

votes

2 answers

How do I integrate NTLM authentication with Perl's SOAP::Lite module?

This Perl code works with Anonymous access to an ASP.NET web service, but when integrated security is turned on, the service returns 401 errors. I think I need to use the NTLM module in conjunction with SOAP::Lite, but it's not clear how to do so.…

perl soap ntlm

asked Jun 18 '09 at 16:28

Brian Haines

votes

2 answers

Access SharePoint intranet Using Google Chrome and FireFox on Mac machine

When i try to open our company's SharePoint Portal using Google Chrome or FireFox from Mac machine, log-in popup keeps prompting infinitely, i tried Domain\Username but still asking for user name and password, it works only with Safari but not…

sharepoint firefox google-chrome sharepoint-2010 ntlm

asked Mar 07 '12 at 05:19

ehabzag

votes

0 answers

Problems get NTLM working with Apache / Linux

my boss wants me to use SSO for your new intranet webpage (PHP/Symfony2), but i've got a problem to get NTLM running :( I am working on OpenSUSE 11.4, using Apache/2.2.17. Module auth_ntlm_winbind_module (shared) is loaded and winbind is working too…

php linux apache single-sign-on ntlm

asked Feb 24 '12 at 11:17

Fabian

votes

2 answers

HttpWebRequest 401 with NTLM Authenticiation

I am having difficulties authenticating a HttpWebRequest to a webserver. The response I am receiving is simply a 401. I've made sure I set the credentials correctly on the C# side, and IIS is correctly set to allow NTLM authentication. I don't…

c# httpwebrequest authorization ntlm http-status-code-401

asked Feb 13 '12 at 15:54

cgatian

22,047
9
56
76

Prev 1 2 3

…

81 82 Next