Questions tagged [ntlm]
NTLM (NT LAN Manager) is a suite of Microsoft security protocols that provides authentication, integrity, and confidentiality to users.
187
questions
43
votes
5
answers
56k
views
Why use Kerberos instead of NTLM in IIS?
This is something that I've never really been able to answer as well as I like: What is the real advantage of using Kerberos authentication in IIS instead of NTLM?
I've seen a lot of people really ...
40
votes
4
answers
135k
views
RDP error "The function requested is not supported" after enabling NLA
I'm trying to RDP into one of my servers, which as Network Level Authentication Enabled as well as NTLMv2 being forced. This worked fine until the server had to reboot for updates. Now, I cannot RDP ...
18
votes
8
answers
127k
views
How do you find out if Active Directory is using Kerberos or NTLM?
Is there a command line program you can use?
12
votes
6
answers
81k
views
How can I check if my IIS site is using NTLM or Kerberos?
How can I check if my IIS site is using NTLM or Kerberos? And how can I change authentication from Kerberos to NTLM? I'm using IIS 7.5.
9
votes
3
answers
19k
views
apt-get through NTLM authenticated proxy
I must be missing something... I could swear I've done this before but I've torched the VM's that I was using previously.
How do you get apt-get to authenticate through a proxy that only supports ...
9
votes
3
answers
35k
views
How do I log authentication attempts with samba?
I have users authenticating with squid (NTLM) to an Active Directory server using Samba 3.5.4 and I'd like to log users' login attempts.
I'd like a line showing something like:
TIMESTAMP ...
8
votes
1
answer
22k
views
IIS7 Windows Authentication Providers
Does anyone know what the different windows authentication providers for IIS7 means. There are 3 available providers
NTLM
Negotiate
Negotiate:Kerberos
NTLM is pretty obvious I think its NTLM and ...
7
votes
2
answers
9k
views
NetApp erroring with: STATUS_NOLOGON_WORKSTATION_TRUST_ACCOUNT
Since a sitewide upgrade to Windows 7 on desktop, I've started having a problem with virus checking.
Specifically - when doing a rename operation on a (filer hosted) CIFS share. The virus checker ...
7
votes
1
answer
8k
views
Password Authentication Fails - NTLMv2
Environment:
Windows 2000 sp4 EDIT: Domain Controller with no trust setup with the Win2008 Server
Windows XP machines
Windows 2008 Server
Netapp NAS
Problem:
We have a shared folder that resides on ...
7
votes
2
answers
7k
views
Looking for a lightweight NTLM HTTP proxy server
For some testing, I am looking for an NTLM HTTP proxy server. The server should authenticate the clients, not delegate that authentication to an upstream "real" NTLM proxy server (like "NTLMAPS" or "...
6
votes
2
answers
4k
views
ntlm_auth - can login in AD with both old and new passwords
I have problem with AD and ntlm_auth. I use the following command, to query the AD server for checking the user existence:
ntlm_auth --use-cached-creds --username=SOME_USER --password=SOME_PASS --...
5
votes
3
answers
46k
views
Check Primary Authentication Protocol for Active Directory (NTLM or Kerberos?) [duplicate]
How can I check, from a client machine (in Global Group)(also is local admin), whether the domain controller is authenticating my login request to the domain using NTLM or Kerberos?
I know that ...
5
votes
2
answers
849
views
Hardening a file-serving Windows Server 2019 instance
I'm in the process of re-configuring and securing a server for the small company that I work for. We use it to store design files and other data with Autodesk Vault. It's running on a VPS from a ...
5
votes
1
answer
16k
views
"Anonymous Logon" vs "NTLM V1" What to disable?
Working on getting rid of NTLM V1 logins all together in the AD environment; found lot of events, almost all of them from the user "Anonymous Logon"(4624 events) other 1(4624 events) percent coming ...
5
votes
2
answers
5k
views
March 10th Patch Tuesday appears to cause SQL Server client connection problems
Since applying the full set of patches on a Win 7.1 Pro desktop and a Windows 2012 R2 Datacenter Azure server running SQL 2014, SQL Management Studio (2008 and 2014 versions) won't connect to the SQL ...
5
votes
1
answer
2k
views
Does IIS NTLM/Kerberos authentication still work with an offline domain controller?
We have multiple IIS instances spread across remote regional branches. Each IIS instance (v.7.5) is running the same application and authenticates its users with Integrated Authentication (NTLM in the ...
5
votes
2
answers
14k
views
NTLM with cURL returns 401
Goal: connecting to an Exchange server (EWS)
Method: cURL
Problem: Cannot get authenticated (NTLM), request returns 401.1
There seems to be an old, well documented 2 issue that started with cURL's ...
5
votes
1
answer
2k
views
Apache mod_auth_kerb asking 2 authentication
I've configured Apache to use mod_auth_kerberos. So far everything is working nicely for client thats connected to Active Directory and have their browser to NTLM enabled.
When clients are not in the ...
4
votes
4
answers
53k
views
Which ports are needed for NTLM (Windows Authentication) to connect to SQL Server?
I've got SQL server running on a machine which is not in a domain, and which is not operating in mixed mode (it's running with "Windows Authentication").
I'm trying to connect to it from a Linux web ...
4
votes
1
answer
6k
views
FreeRADIUS using Active Directory integration broken without any traces
I've a FreeBSD 10.0 server running FreeRADIUS 3 and things got broken without any apparent reason.
I'm using Winbind from Samba4 to authenticate with ntlm_auth. I've done some debug to solve the ...
4
votes
1
answer
5k
views
How can I inspect why Active Directory can't use kerberos and fallsback to NTLM?
I have been trying to get squid running with kerberos auth for a few
days but I'm in some trouble. The problem has been asked and replied
many times on both the squid-users list and on the web, I have ...
4
votes
0
answers
1k
views
Configure ntlm_auth for offline operations
We currently have a NAC server set up to authenticate against a Samba4 AD using the ntlm_auth utility and would like to make it more tolerant to network outages.
Currently, when the NAC loses ...
4
votes
0
answers
2k
views
Squid Logs NTLM usernames only for certain requests
Currently I have squid 3.2 setup with NTLM authentication and LDAP Group pulls. I also have MySar running to pull the reports.
It seems that the way the logging works is by passing them twice, one to ...
4
votes
2
answers
5k
views
Why is squid breaking kerberos/NTLM auth?
I'm using squid 2.6.22 (Centos 5 Default) as a proxy. Squid seems to break the authentication process for web pages when they require NTLM or Kerberos Auth.
I tested with sharepoint 2007 and tried all ...
3
votes
5
answers
9k
views
Implications of allowing Windows clients to use NTLMv1?
I have a web application that I'd like to authenticate to using pass-through NTLM for SSO. There is a problem, however, in that NTLMv2 apparently will not work in this scenario (without the ...
3
votes
1
answer
1k
views
Windows service running as network service - how does it authenticate? Breaking change in W2K8?
A Windows service running as "Network Service" talks to services on other machines (here: SQL Server and Analysis Services), using Windows authentication.
For authentication, we have to grant ...
3
votes
2
answers
1k
views
Can I set up Samba shares that are authenticated against a domain *without* being joined to a domain?
I'd like to create a Samba server with some shares that have access controlled via accounts on the domain, but without joining the machine to the domain? Is this possible?
3
votes
2
answers
4k
views
Optional NTLM authentication in Apache
I have a site set up to authenticate users using NTLM in Apache on Linux using perl's Apache2::AuthenNTLM module. This works great when I require the authentication, but I want this to bypass the ...
3
votes
3
answers
2k
views
Risks involved in setting up Kerberos authentication for WSS Reporting Services
We have an established Intranet based on WSS with two front ends and a database.
Currently all authentication is NTLM.
We have installed Reporting Services In Integration Mode.
RS works as long as ...
3
votes
1
answer
199
views
Why deploy Kerberos for Exchange 2010 SP1 RU3?
The first version of Exchange 2010 to support Kerberos is SP1 RU3. It does this through the RollAlternateServiceAccountCredential.ps1 commandlet.
Besides implementing "better" security, does this ...
3
votes
1
answer
4k
views
Avoiding 401 response for each request using NTLM
We have here an ASP.NET 3.5 application using NTLM based Windows authentication.
The system runs on a private network that is actually distributed over different geographic places (connected via VPN).
...
3
votes
1
answer
2k
views
NTLM on a Load Balanced Environment
We have a Netscaler VPX that load balances HTTP requests to 3 IIS services on 3 Windows servers. Authentication is set to "Windows Authentication" but because our environment isn't set up for Kerberos ...
3
votes
1
answer
10k
views
What does AuthForwardServerList do?
A bit of context, we have several Windows 7 clients connected to an LDAP backed Samba PDC. We also have a Zimbra 8 server that authenticates off the same LDAP. When users logon to the Windows 7 ...
3
votes
2
answers
8k
views
HaProxy and Windows Auth
Can I get HaProxy to forward windows auth credentials onto IIS?
I have searched for a day and cannot find much information out there.
3
votes
1
answer
2k
views
All client browsers repeatedly asking for NTLM authentication when running through local proxy server
All client browsers repeatedly asking for NTLM authentication when running through local proxy server.
When pointing browsers through the local proxy to the internet, some but not all clients are ...
3
votes
1
answer
3k
views
Apache configuration to make NTLM authentication work through a Proxy
I'm running an application server behind an Apache proxy with the following sort of thing in my Apache config:
ProxyPass /app http://myapplication:8080/myapp
ProxyPassReverse /app http://...
3
votes
2
answers
6k
views
Weird IIS with Windows Authentication + IE problem
I have a website running on IIS and using Windows Authentication. All users that are configured to get access to the site are form a AD domain (not local users). In the properties of a Website, I have ...
3
votes
0
answers
308
views
Active Directory: how to get rid of NTLM when we have remote users (road warriors)?
I want to disable NTLM completely. I don't want password hash to be stored in memory because of pass-the-hash attack (people don't have SeDebugPrivilege but anyway NTLM is not good)
But people connect ...
3
votes
0
answers
2k
views
How to run kinit as root before automounting mutiuser cifs mounts?
Goal
I'm setting up multi-user CIFS mounts in an Active Directory environment under CentOS 8.2. The storage server supports SMB3.1.1 protocol.
Prerequisites
I could easily integrate the system to the ...
3
votes
0
answers
2k
views
Getting Authentication Negotiate instead of NTLM while consuming SOAP WCF Service in Net.Core 2.1
I was trying to connect to a WCF SOAP service using NTLM Authentication Scheme, I succeeded at it when using .Net Framework 4.x but when I try to consume the same service in .NET Core 2.1 it fails (...
3
votes
0
answers
8k
views
Unable to configure CNTLM
I am setting up a proxy server on my linux system using CNTLM. I have edited the cntlm.conf file and made the following changes-
#
# Cntlm Authentication Proxy Configuration
#
# NOTE: all values ...
2
votes
4
answers
1k
views
openvpn as two factor network entry point integrated to AD
I'm looking to deploy openvpn as a linux RAS server (rather than site-to-site) and i'd like to use two factor authentication, specifically the use of ssl certificates and passwords tied into an ntlm ...
2
votes
1
answer
5k
views
Squid proxy authentication - most painless way
Ok, the title says it all, really.
The end goal is to implement proxy-authentication for end users. Users' systems are mostly (95%) windows-based, the proxy is a Debian Lenny running squid 2.7.
I've ...
2
votes
6
answers
19k
views
How to investigate windows network lockouts related to Outlook Exchange Server authentication?
I am an end-user, not an IT professional. Unfortunately my corporate resources cannot solve this problem. I am looking for some advice to give them.
I've been account locked on our corporate network ...
2
votes
1
answer
5k
views
Apache2::AuthenNTLM connects to Domain controller but does not authenticate
I have an Apache 2.2 server running Apache2::AuthenNTLM. I have successfully Apache2::AuthenNTLM configured it to the point that it connects to the domain controller. However, valid username / ...
2
votes
1
answer
2k
views
Apache - Replace Apache::AuthenNTLM with Kerberos (mod_auth_kerb)
Within an intranet system on Solaris we currently use perls Apache2::AuthenNTLM module to authenticate with a Win 2k3 doman server, so we can access the user ID of the person browsing the site.
...
2
votes
1
answer
3k
views
Improving Windows Authentication performance on IIS
We're struggling with performance issues with a ASP.NET MVC site that is using Windows Authentication.
Response time is very slow on the first request to the site when the user is being ...
2
votes
1
answer
376
views
rules for usernames in windows domain
I'm working on a app that uses Jespa to do transparent SSO. I'm using the NtlmSecurityProvider. In my code, when I get the username looks like this: "DOMAINNAME\username"
e.g.
<% out.println(...
2
votes
1
answer
2k
views
Users of Intranet site on IIS7.5 prompted for username/password
I have an intrasite from a third-party that we just transitioned from IIS 6 on Windows 2003 to a Windows 2008 R2 server with IIS 7.5. On the old system, the user would connect ot the website and be ...
2
votes
4
answers
1k
views
Web based remote administration of Windows user accounts? [closed]
We're looking for a simple web based admin tool to allow trusted users to create windows user accounts via a web based interface. It should also give regular users the ability to change their ...