[cifs-protocol] [MS-NRPC] Problem encrypting data when use AES based Netlogon SChannel

Michael B Allen ioplex at gmail.com
Mon Jul 4 13:42:32 MDT 2011

On Sun, Jul 3, 2011 at 8:47 PM, Moh Yen Liew <mohyen.liew at wesoft.com> wrote:
> Hi:
>                 I am trying to implement AES-based Netlogon SChannel with
> Windows 2k8R2 server.
>                 However, the server always return 0x00721 status code to me.
> Please see  attached network trace:
> -          pkt 531, which contain the encrypted data
> -          Pkt 532, server return 0x721 status code .
>                 If AES is negotiated, decrypt using an initialization vector
> constructed by concatenating twice the sequence number ( thus getting 16
> bytes of data)

Hi Yen,

Is bit 17 in NegotiateFlags of NetrServerAuthenticate3 supposed to be
off like it is in your capture?


Michael B Allen
Java Active Directory Integration

More information about the cifs-protocol mailing list