Stack Overflow
Stack Overflow

Questions tagged [sspi]

Use for questions having to do with the Security Support Provider Interface (SSPI) API.

The Security Support Provider Interface () is a Microsoft Windows API used to perform security-related operations such as authentication. It is implemented as a a dynamic-link library (DLL) supplied with the operating system. SSPI is the means by which the operating system loads SSPs (Security Support Providers), such as Kerberos and NTLM, when the system boots. The SSPI is the implementation of the Generic Security Service API () in Windows.

This article, while dated, is a good primer on : Logon and Authentication Technologies

214 questions
0
votes
0 answers

Generate simple successful HTTP Negotiate/NTLM process in C#/Powershell/Python/High-Level Lang

I've looked over the SSPI documentation, however can find relatively little in the way of sample or working code that implements the library interfaces required in C++. My goal: There have been numerous situations where NTLM authentication has…
Coruscate5
  • 2,253
  • 17
  • 28
0
votes
0 answers

C# Desktop app Authentication for Confluence or Jira?

I am creating a desktop application where I want to retrieve some pages or information from Confluence and Jira and maybe other tools. I'm using RestSharp to make the API Request, but my question is if I need to make some kind of authentication for…
Lodes
  • 21
  • 6
0
votes
0 answers

PHP_AUTH_USER not available when using fetch with credentials to another domain

I have windows authentication activated on two separate servers at different IP addresses through apache httpd.conf and SSPI MOD AUTH. I'm trying to put an API on one server, and have a website on a second serer access the API. If I go to a website…
Frank
  • 952
  • 1
  • 9
  • 23
0
votes
1 answer

MS-SIPAE <-> SSPI: MakeSignature is 'GSS_GetMIC’?

I have the following question about Windows SSPI. I have made an Win32 app that has to authorize with a server: using protocol MS-SIPAE in NTLM mode. The app uses SSPI. See http://msdn.microsoft.com/en-us/library/cc431510.aspx. about the…
KellyLynch
  • 241
  • 2
  • 9
  • 30
0
votes
1 answer

How to query needed size for output buffer when calling AcceptSecurityContext?

I tried usual Windows way, I passed nullptr as output buffer pointer and size 0. AcceptSecurityContext fails with error SEC_E_INSUFFICIENT_MEMORY. I was expecting to get needed size in OutSecBuff.cbBuffer but it is 0. I call it again with huge…
zdenko.s
  • 931
  • 1
  • 12
  • 29
0
votes
2 answers

How can I copy a table from a SQL Server to another?

I've set up 2 local SQL server databases, one on a laptop and the other on my desktop, I simply want to transfer the data my laptop gathers onto my desktop PC. I've already managed to connect the 2 machines, from my desktop's SSMS I can see and…
9879ypxkj
  • 387
  • 5
  • 15
0
votes
1 answer

KRB_AP_REQ ticket from SSPI

I have a Linux server application that is using Kerberos for client authentication and client that needs to run on Windows. Kerberos tickets are issued by Windows Active Directory. Client authenticates successfully on server if I use MIT KfW 3.2.2.…
neznanec
  • 103
  • 1
  • 5
0
votes
0 answers

TIdNTLMAuthentication with something other than TIdHTTP

I am experimenting with Google RPC and managed to establish an encrypted connection. Now I would like to perform NTLM authentication on server. I know that I should use a pair of functions InitializeSecurityContext and AcceptSecurityContext for…
Paul
  • 25,812
  • 38
  • 124
  • 247
0
votes
1 answer

Map for SSPI - fatal: role does not exist - case issue

I use pg_ident.conf (PostgreSQL 12, OS Windows Server 2019) file to map users for SSPI this way: # MAPNAME SYSTEM-USERNAME PG-USERNAME MapForSSPI someone@COMPANY someone Recently I had to add new user, which I did exactly…
Miro
  • 599
  • 10
  • 29
0
votes
1 answer

Getting handles to the credentials of a domain user from a process launched by a local user on Windows 10

Background: Computer mycomputer is running Windows 10 and is joined to domain mydomain.com. A user is logged with local account mycomputer\localuser on mycomputer. The user also knows the password of domain account mydomain\domainuser. The service…
Arnaud
  • 3,765
  • 3
  • 39
  • 69
0
votes
1 answer

SSPI: acquire credentials for another user from a process running with local admin privileges

I am running a process with loacl admin privilege in Windows and trying to obtain a credential handle for another user using AcquireCredentialsHandle . It is possible to pass in SEC_WINNT_AUTH_IDENTITY structure with user info ( e.g. user, domain,…
ekhanad
  • 154
  • 2
  • 8
0
votes
1 answer

gss_accept_sec_context() failed: An unsupported mechanism was requested

I have a client on windows which is sending a kerberos token obtained from windows using sspi. When I pass in client's token to gss_accept_sec_context on server (Linux Redhat 8) , I get "An unsupported mechanism was requested" I am calling the…
ekhanad
  • 154
  • 2
  • 8
0
votes
1 answer

AcquireCredentialsHandleA() returns 0x8009030e (No credentials are available in the security package) for PFX file

I'm trying to setup server-side encryption using SSPI. I'm successfully (as far as I can tell) loading a certificate stored as a PFX file, but the call to m_pSSPI->AcquireCredentialsHandleA() returns 0x8009030e. This method seems to successfully…
David
  • 76
  • 7
0
votes
0 answers

How to call CreateProcessAsUser with SSPI

I am using SSPI to perform single sign-on which works. After successful single sign-on I get the user token as following: HANDLE tempHandle; if (!QuerySecurityContextToken(&tnS->hctxt, &tempHandle)) { MyDbg("SSO: Could not obtain token for…
ekhanad
  • 154
  • 2
  • 8
0
votes
2 answers

What is the difference between GSS API and SSPI API when using Kerberos with delegation?

What is the difference between GSS API and SSPI API when using Kerberos with delegation? I have middleware running Java code in a Tomcat Server. The middleware authenticates the user with Kerberos (GSS API). If no Kerberos token is present in the…
Axel-R-D
  • 1
  • 3
1 2 3
14 15