[jcifs] NtlmHttpAuth Scalability
Michael B Allen
mba2000 at ioplex.com
Thu May 6 22:01:07 GMT 2004
Frederik Heick said:
> I have used NtlmHttpFilter in my firm for half a year, and we have 17000
> users. No performance problems.
>
> But once awhile we see the Login window pops up. Dont know why.
Frederik,
How frequently is "once awhile"? Once a month sitewide or once a week?
In theory this should not happen. Could it be that those users are not
logged into the domain like being logged in using a local machine account
on a laptop?
In jCIFS 0.9 I am making changes to invalidate password hashes when
transports close so that there is no possibilty of attempting to sent
invalid password hashes to the server. Again, in theory this should have
no effect as the filter bypasses the logon if the NPA is in the users
HttpSession. If it's not in the user's session it should renegotiate NTLM.
The changes are ultimately just for getting DFS to wok with
NetworkExplorer. Still, if you happen to try 0.9 when it is release please
let us know if you see a change in behavior.
More information about the jcifs
mailing list