[jcifs] Changing the Auth Protocol Order
christian.becker at continentalsoftware.com
Tue Sep 12 15:37:22 GMT 2006
Thanks for your reply
The disable of the NTLM Protocol should only affect the Headers, so that NTLM is no longer offered to the Browsers.
But jcifs should callenge the via BASIC submitted data against the DCs.
The Proxy exclusion would not work, in my case the Authentication goes over the Internet, the Server is in our Datacenter and the users are in an other company behind the squid Proxy.
Von: Michael B Allen [mailto:mba2000 at ioplex.com]
Gesendet: Dienstag, 12. September 2006 17:24
An: Christian Becker
Cc: jcifs at lists.samba.org
Betreff: Re: [jcifs] Changing the Auth Protocol Order
Add the target host to the proxy exclusion list in IE.
Otherwise, if all you want is BASIC then you don't need the JCIFS Filter
On Tue, 12 Sep 2006 11:43:44 +0200
"Christian Becker" <christian.becker at continentalsoftware.com> wrote:
> We are currently expecting problems with jcifs and a squid proxy.
> After some research I found that NTLM is a very bad protocol for Proxys.
> In our jcifs Config we already enabled the BASIC Authentication Method,
> but to now it not really seams to work, because NTLM is the first
> offered Protocol.
> Is there a way to change it, that BASIC is the First in List?
> Or could NTLM be totally disabled?
> We use jcifs as complete untouched lib and so we won't want to change
> anything by us self.
> Christian Becker
Michael B Allen
PHP Active Directory SSO
More information about the jcifs