Questions tagged [ntlm]

NTLM (NT LAN Manager) is a suite of Microsoft security protocols that provides authentication, integrity, and confidentiality to users.

NTLM has been deprecated for many uses as it doesn't support the latest standards:

Implementers should be aware that NTLM does not support any recent cryptographic methods, such as AES or SHA-256. It uses cyclic redundancy check (CRC) or message digest algorithms (RFC1321) for integrity, and it uses RC4 for encryption. Deriving a key from a password is as specified in RFC1320 and FIPS46-2. Therefore, applications are generally advised not to use NTLM - MSDN and to use Kerberos instead.

Despite this NTLM is still used inside enterprise networks where Microsoft Active Directory provides the enterprise directory service for Integrated Windows Authentication when Kerberos is not available.

NTLM over HTTP handshake is fairly simple:

Request  - [unauthenticated - no user info passed]

Response - 401 Unauthorized
           WWW-Authenticate: NTLM


Request  - Authorization: NTLM <base64-encoded type-1-message>

Response - 401 Unauthorized
           WWW-Authenticate: NTLM <base64-encoded type-2-message>


Request  - Authorization: NTLM <base64-encoded type-3-message>

           Server can now check username/password against LDAP from type-3 message
Response - 200 Ok [now authenticated & authorised]

1230 questions

votes

2 answers

Kerberos authentication in IIS 7

We have some web content that is setup in virtual directories using integrated windows authentication. The virtual directories are running under application pools that are using a custom identity (custom user account). The problem is that NTLM…

asked Sep 23 '10 at 05:06

Andy Arismendi

50,577
16
107
124

votes

4 answers

how can i use sharepoint (via soap?) from python?

I want to use Sharepoint with python (C-Python) Has anyone tried this before ?

python sharepoint soap ntlm suds

asked Oct 20 '08 at 16:09

Blauohr

5,985
2
25
31

votes

2 answers

How to calculate NTLM hash in python?

How can I calculate NTLM hash of a passowrd in python? Is there any library or sample code? I want it for writing a NTLM brute force tools with python (Like Cain & Abel )

python hash ntlm

asked Mar 24 '13 at 20:30

SuB

2,250
3
22
37

votes

1 answer

How to force a .net WCF client to use NTLM in an basicHttpBinding?

right now I have the security node defined like this:

c# wcf wcf-client ntlm

asked Jul 15 '09 at 21:11

abudker

votes

2 answers

NTLM Authentication in Android

I am developing an Android application which access Sharepoint Web Service and does SOAP processing. I tried various ways like JCIFS, etc. Nothing worked. Could any one help me here? I googling it from many days, but everyone who has this issue is…

android ntlm

asked Jan 07 '12 at 15:00

Indrajit3010

votes

5 answers

MD4 hashlib support in Python 3.8

I am trying to implement a soap client for a server that uses NTLM authentication. The libraries that I use (requests-ntlm2 which relies on ntlm-auth) implement the MD4 algorithm that lies in the core of the NTLM protocol via the standard library's…

python python-3.x ntlm hashlib ntlm-authentication

asked Nov 12 '21 at 06:01

spitoglou

votes

6 answers

MSDeploy triggers 401 Access denied error when trying to synch a site

I try to push/sync a IIS Site from a Win2003 Server to another. This is my command: msdeploy -verb:sync -source:metakey=lm/w3svc/68512112 -dest:metakey=lm/w3svc/68512112,computername=backup-09,username=Administrator,password=PASSWORD -whatif >…

iis ntlm msdeploy msdeployserviceagent

asked Mar 05 '09 at 16:37

kitsune

11,516
13
57
78

votes

1 answer

How to provide ntlm authentication while calling any url?

I have a hosted url which authenticates using ntlm (windows Integrated authentication). I am on windows and using java 1.8 URL url = new URL("someUrl"); HttpURLConnection con = (HttpURLConnection) url.openConnection(); //…

java java-8 windows-authentication ntlm

asked Feb 07 '19 at 07:21

Abhijeet Patil

votes

1 answer

CNTLM proxy and .pac file

Is there a way to use CNTLM proxy with autoconfiguration .pac file? I'd like CNTLM to automatically decide, which urls should be resolved through proxy and which directly (basing on a remote corporate .pac file).

proxy ntlm proxy.pac

asked Aug 23 '18 at 13:18

aerion

votes

2 answers

Anonymous access and NTLM authentication in IIS

I have a server set up with IIS, and my site has some pages which should allow anonymous access and some pages which should require the "Integrated Windows authentication". On the Authentication Method screen in IIS it looks like you can enable…

iis authentication ntlm mixed-authentication

asked Jan 29 '09 at 19:09

Andrew Hampton

1,632
3
20
29

votes

1 answer

Windows Executable File Authentication

Searching around the windows authentication methods and protocols, i decided to understand the exact difference between Negotiate, Kerberos, and NTLM used in a simple executable file before liking it with IIS and Web Authentication. I reached to…

windows-authentication kerberos ntlm windows-security negotiate

asked Mar 22 '16 at 12:04

Khaled Obaid

votes

1 answer

How to send NTLM authenticated post request using jersey?

I am making rest api calls to Sharepoint 2013 using Java. How can I connect to the sharepoint 2013 using jersey rest client? Note: currently I am using apache http components and NTCredentials class Credentials credentials=new…

java rest jersey sharepoint-2013 ntlm

asked May 06 '15 at 11:54

Sagar Pudi

4,634
3
32
51

votes

2 answers

Python Kerberos-1.1.1.tar.gz Install Failure on Windows

I run Python on windows based environments (2003, win 7, 2008 r2, etc) both 32 and 64-bit flavors. I've recently had to authenticate to various corporate, internally facing web-sites using both NTLM and Kerberos authentication schemes. I was…

python authentication kerberos ntlm

asked Jan 25 '14 at 00:35

user3233941

votes

2 answers

How to 'share' NTLM authentication across multiple HttpWebRequests?

My C# app hits a web server that uses NTLM authentication. I find that each request made to the server (using a new HttpWebRequest) is individually authenticated. In other words, every request results in a 401 response, after which an NTLM…

c# httpwebrequest ntlm networkcredentials

asked Aug 31 '11 at 11:17

mackenir

10,801
16
68
100

votes

8 answers

How do you get the logged in Windows domain account from an ASP.NET application?

We have an ASP.NET application that manages it's own User, Roles and Permission database and we have recently added a field to the User table to hold the Windows domain account. I would like to make it so that the user doesn't have to physically…

asp.net webforms authentication ntlm

asked Sep 10 '08 at 13:38

mattruma

16,589
32
107
171

Prev 1 2 3

…

81 82 Next