Questions tagged [ntlm]

NTLM (NT LAN Manager) is a suite of Microsoft security protocols that provides authentication, integrity, and confidentiality to users.

NTLM has been deprecated for many uses as it doesn't support the latest standards:

Implementers should be aware that NTLM does not support any recent cryptographic methods, such as AES or SHA-256. It uses cyclic redundancy check (CRC) or message digest algorithms (RFC1321) for integrity, and it uses RC4 for encryption. Deriving a key from a password is as specified in RFC1320 and FIPS46-2. Therefore, applications are generally advised not to use NTLM - MSDN and to use Kerberos instead.

Despite this NTLM is still used inside enterprise networks where Microsoft Active Directory provides the enterprise directory service for Integrated Windows Authentication when Kerberos is not available.

NTLM over HTTP handshake is fairly simple:

Request  - [unauthenticated - no user info passed]

Response - 401 Unauthorized
           WWW-Authenticate: NTLM


Request  - Authorization: NTLM <base64-encoded type-1-message>

Response - 401 Unauthorized
           WWW-Authenticate: NTLM <base64-encoded type-2-message>


Request  - Authorization: NTLM <base64-encoded type-3-message>

           Server can now check username/password against LDAP from type-3 message
Response - 200 Ok [now authenticated & authorised]

1230 questions

votes

2 answers

NTLM fails when consuming SharePoint web service from Java?

I have a Java client that consumes SharePoint 2010 standard web services (sitedata.asmx, permissions.asmx, etc) written with JAX-WS implementation from the JDK 6. So far, authentication is done with NTLM using a custom Authenticator implementation…

asked Jan 16 '12 at 17:51

jmend

1,210
4
16
30

votes

1 answer

CXF Endpoint using Windows Credentials in Mule ESB

i have a working mule to C# service endpoint that i use. Service is hosted on WCF/C# - mule is openning a client to that service using a set of classes generated by apache cxf (Wsdl2java). However, up until now all i used is a basichttpbinding on…

cxf ntlm esb ws-security mule

asked Dec 14 '11 at 11:43

Menyh

votes

2 answers

MonoTouch support for accessing Mono.Security.Protocol.Ntlm.NtlmFlags

We use NTLM auth to access an ASP.net web services from our MonoTouch app and everything works fine. One of our customers uses the same app and the NTLM auth fails from our app but works from the iPad's Safari browser. Looking at the packet flow…

web-services mono xamarin.ios ntlm ntlmv2

asked Nov 22 '11 at 23:03

SoftwareWeaver

votes

2 answers

SharePoint Infrastructure Update Authentication Issues

I've got a SharePoint MOSS 2007 development setup on to which I installed the WSS infrastructure update. Now, whenever I try to access any site collection in my SharePoint farm using IE7 I get a username and password prompt. I enter valid…

sharepoint authentication ntlm infrastructure

asked Apr 20 '09 at 21:57

Russell Giddings

8,731
5
34
35

votes

1 answer

Java 6 with NTLM2

I have a component that is written in C# to overcome NTLM2 authentication protocol (or at least that what I was told) I'd like to convert this component to Java 6 - will java support the NTLM2 ?

java ntlm ntlmv2

asked Aug 16 '11 at 06:04

Eyal

votes

1 answer

Jespa ntlm authentication with multiple active directories or windows domains

I'm using Jespa to do transparent ntlm sign on. I want to be able to authenticate the users in multiple windows domains. I have it working with one domain. How do I add another? Thanks

active-directory single-sign-on ntlm jespa

asked Aug 15 '11 at 19:49

Sam Backus

1,693
14
19

votes

1 answer

Connect to SQL Server with Windows Authentication using DBeaver

I'm using Dbeaver on macOs Big Sur 11.6.1, trying to connect SQL Server with domain/windows auth(NTLM) but its getting error; Login failed. The login is from an untrusted domain and cannot be used with Windows authentication.…

sql-server ntlm dbeaver

asked Dec 21 '21 at 19:58

tcblue

votes

0 answers

\[express-ntlm\] No Authorization header present

I try to implement ntlm to ensure a user is in a certain ActiveDirectory-group in order to know if he's allowed to view the content or not. He should not have to login himself in if he has a user account which is in the ActiveDirectory. I'm new to…

node.js reactjs express ntlm express-ntlm

asked Jul 02 '21 at 12:31

Robin Aegerter

votes

1 answer

Are there HTTP client libraries for Delphi which suport NTLMSSP authentication?

We recently started using a Squid HTTP proxy server which provides squid-2.5-ntlmssp authentification. Does somebody know if NTLMSSP is supported by one of the popular HTTP client libraries for Delphi (Indy, Synapse, ICS, nsoftware ...)? Update: I…

delphi http authentication indy ntlm

asked Jul 14 '11 at 10:29

mjn

36,362
28
176
378

votes

1 answer

Unable to retrieve NTLM authenticated webpage with Python because of HTTP 302

Can anyone help me with the python code that I have below? It is some open source that I've slightly modified for my own use. I am attempting to access a webpage from a Windows server that is running NTLM authentication. At first my problem was…

python authentication redirect ntlm http-status-code-302

asked Jun 23 '11 at 20:55

Jay

votes

2 answers

Apache + Perl + NTLM/LDAP == Single signon?

We have a Perl app which runs under Apache on Solaris using CGI::Application. That's all running fine. We'd like to get access to the USER_ID variable passed by the IE browser, and do some Database queries and LDAP queries. I've looked at the Apache…

apache ldap ntlm apache-config

asked May 16 '11 at 07:41

Raoul

3,849
3
24
30

votes

3 answers

How do I add NTLM support for a Kestrel host?

We would like to use Kestrel to host our web-api. We must support both NTLM and Negotiate authentication. That should be possible with Core…

c# asp.net-core ntlm kestrel

asked Oct 10 '19 at 08:40

Torben Nielsen

votes

0 answers

How do I know if i'm behind an NTLM proxy?

Using a computer behind an private corporate proxy, I would like to know if the proxy use or is compatible with NTLM authentication protocol. Any solution working on Windows and/or Linux would be accepted.

proxy ntlm http-proxy

asked Sep 13 '19 at 08:20

mxdsp

votes

1 answer

HTTP NTLM authentication

I am trying to consume an API which requires NTLM authentication. This curl command works fine: curl -X POST --header 'Content-Type: application/json' --header 'Accept: application/json' --ntlm -u user:password -d '{ "key1": "100", "key2":…

http go ntlm

asked Aug 07 '19 at 16:24

roAl

votes

2 answers

Configure NTLM for Opera and Safari and chrome

I am trying to make an existing intranet application that used to work only in IE 7, a browser independent application. In firefox(I set network.automatic-ntlm-auth.trusted-uris) and IE(inbuilt) I was able to configure it. The question is how to…

google-chrome safari opera ntlm

asked Apr 04 '11 at 16:22

VolleyBall Player

Prev 1 2 3

…

81 82 Next