Questions tagged [ntlm]

NTLM (NT LAN Manager) is a suite of Microsoft security protocols that provides authentication, integrity, and confidentiality to users.

NTLM has been deprecated for many uses as it doesn't support the latest standards:

Implementers should be aware that NTLM does not support any recent cryptographic methods, such as AES or SHA-256. It uses cyclic redundancy check (CRC) or message digest algorithms (RFC1321) for integrity, and it uses RC4 for encryption. Deriving a key from a password is as specified in RFC1320 and FIPS46-2. Therefore, applications are generally advised not to use NTLM - MSDN and to use Kerberos instead.

Despite this NTLM is still used inside enterprise networks where Microsoft Active Directory provides the enterprise directory service for Integrated Windows Authentication when Kerberos is not available.

NTLM over HTTP handshake is fairly simple:

Request  - [unauthenticated - no user info passed]

Response - 401 Unauthorized
           WWW-Authenticate: NTLM


Request  - Authorization: NTLM <base64-encoded type-1-message>

Response - 401 Unauthorized
           WWW-Authenticate: NTLM <base64-encoded type-2-message>


Request  - Authorization: NTLM <base64-encoded type-3-message>

           Server can now check username/password against LDAP from type-3 message
Response - 200 Ok [now authenticated & authorised]

1166 questions

votes

10 answers

WCFTestClient The HTTP request is unauthorized with client authentication scheme 'Anonymous'

I've created one WCF service and deployed it on Server. When I browse this service it gives me positive response with ?wsdl URL. Now I'm trying to test the service through WCF Test client. It shows proper metadata. But when I try to invoke any of…

asked Jun 25 '09 at 13:46

user82613

1,223
2
11
17

votes

9 answers

Unable to get windows authentication to work through local IIS

So I've created a new ASP.NET MVC project using the intranet template. web.config contains the appropriate values (e.g. ). If I fire up the web app using the VS webserver, it all looks fine - the page shows my Windows…

asp.net-mvc iis windows-authentication ntlm http-status-code-401

asked Sep 12 '11 at 11:28

David

14,678
20
80
145

votes

8 answers

NPM behind NTLM proxy

Is it possible to run npm install behind an HTTP proxy, which uses NTLM authentication? If yes, how can I set the server's address and port, the username, and the password?

node.js npm ntlm http-proxy

asked Sep 02 '13 at 08:49

kol

24,444
11
70
104

votes

10 answers

The HTTP request is unauthorized with client authentication scheme 'Ntlm' The authentication header received from the server was 'NTLM'

I know there's a lot of questions on SO similar to this, but I couldn't find one for this particular issue. A couple of points, first: I have no control over our Sharepoint server. I cannot tweak any IIS settings. I believe our IIS server version…

c# .net sharepoint authentication ntlm

asked Apr 09 '10 at 15:55

Pandincus

9,286
7
40
61

votes

13 answers

401 response for CORS request in IIS with Windows Auth enabled

I'm trying to enable CORS support in my WebAPI project, and if I enable Anonymous Authentication then everything works fine, but with Windows Auth + disabled anonymous authentication, the OPTIONS request sent always returns a 401 unauthorized…

iis-7.5 windows-authentication asp.net-web-api ntlm cors

asked May 23 '12 at 15:25

dariusriggins

1,394
1
14
30

votes

3 answers

Using Fiddler to sniff Visual Studio 2013 requests (proxy firewall)

I am having issues with Visual Studio 2013 and our corporate proxy (signin does not work, updates do not work, visual studio gallery does not work, nuget and git fail ). All of these are doing http or https requests. (e.g.…

visual-studio proxy wcf-security fiddler ntlm

asked Jan 10 '14 at 16:49

Dr.YSG

6,072
13
61
121

votes

4 answers

How to enable Auto Logon User Authentication for Google Chrome

I have a site I go to that allows me to auto log in with my creditentials (windows) and using Internet Explorer I can just set the option under "User Authentication" to "Automatic logon with current user name and password", but I'm wanting to use…

asp.net windows internet-explorer google-chrome ntlm

asked Oct 17 '11 at 23:47

daveomcd

5,655
12
72
125

votes

3 answers

Authentication Test Servers

I'm searching for examples of public HTTPS sites that use one of the following authentication types - these sites will be used as test servers for an application currently under development. BASIC authentication DIGEST authentication NTLM…

testing authentication ssl https ntlm

asked Jun 28 '11 at 15:49

Chrisc

1,448
4
17
29

votes

3 answers

NTLM proxy without password?

I work on a corporate windows network (which I log in to) with a HTTP proxy. When I use Internet Explorer it magically uses the proxy without me needing to type in my password. Certain other programs seem to manage this too, like JavaWebStart has a…

authentication proxy curl ntlm sspi

asked Aug 14 '09 at 09:41

Nick Fortescue

40,193
23
99
131

votes

7 answers

Avoiding 401 response for each request using NTLM

We have here an asp.net 3.5 application using NTLM based windows authentication. The system runs on a private network that actually distributed over different geographic places (connected via VPN). We are now trying to optimize the website's…

iis iis-6 ntlm http-status-code-401

asked Aug 03 '09 at 13:58

Satumba

votes

2 answers

Using curl with NTLM auth to make a post is failing

I can't seem to wrap my head around this. I'm trying to script automating an upload of a csv but the curl is failing with a 401. curl -v --ntlm -u username --upload-file ~/galaxy/forums/pt_update.csv…

http curl request ntlm

asked Mar 29 '13 at 04:05

Juddles

votes

4 answers

How to find if NTLM or Kerberos is used from WWW-Authenticate: Negotiate header

I am programming a client application in .Net that communicates with server via HTTP. I need to set different request buffering options in case of NTLM and Kerberos authorization. How to find out if NTLM or Kerberos is used? Is it possible to…

.net kerberos ntlm negotiate www-authenticate

asked Apr 08 '11 at 15:47

IT Hit WebDAV

5,041
12
50
88

votes

3 answers

Configuring NuGet server to use Authentication

The release notes for NuGet 1.5 state NuGet now supports connecting to private repositories that require basic or NTLM authentication. However, the link contained in there simply leads to the hosting your own nuget feeds page, without any further…

authentication iis nuget ntlm nuget-server

asked Jul 29 '13 at 15:32

Wilbert

6,534
6
38
81

votes

4 answers

What TargetName to use when calling InitializeSecurityContext (Negotiate)?

The Question When calling InitializeSecurityContext, what value do i pass to the TargetName parameter? Revised Background I'm calling the function InitializeSecurityContext: InitializeSecurityContextA( @pAS.hcred, //[in] credentials …

security winapi kerberos ntlm

asked Mar 20 '12 at 14:01

Ian Boyd

220,884
228
805
1,125

votes

3 answers

How to support NTLM authentication with fall-back to form in ASP.NET MVC?

How can I implement following in ASP.NET MVC application: user opens intranet website user is silently authenticated if possible if NTLM authentication didn't worked out, show login form to user user indicate login password and select domain from…

c# asp.net-mvc authentication ntlm

asked Oct 26 '10 at 20:51

Igor Romanov

1,601
2
18
35

2 3

…

77 78 Next