[jcifs] NTLM HTTP AUTHENTICATION problem
haattila
hattila at energosoft.co.yu
Wed Jun 20 07:02:46 GMT 2007
I installed Tomcat 6.0.13 version with fallowing settings in web.xml
<filter-name>NtlmHttpFilter</filter-name>
<filter-class>jcifs.http.NtlmHttpFilter</filter-class>
<init-param>
<param-name>jcifs.netbios.wins</param-name>
<param-value>192.168.67.9</param-value>
</init-param>
<init-param>
<param-name>jcifs.smb.client.domain</param-name>
<param-value>ESOFT</param-value>
</init-param>
<init-param>
<param-name>jcifs.smb.client.username</param-name>
<param-value>proba</param-value>
</init-param>
<init-param>
<param-name>jcifs.smb.client.password</param-name>
<param-value>proba00</param-value>
</init-param>
<init-param>
<param-name>jcifs.netbios.soTimeout</param-name>
<param-value>10000</param-value>
</init-param>
<init-param>
<param-name>jcifs.util.loglevel</param-name>
<param-value>5</param-value>
</init-param>
<init-param>
<param-name>jcifs.smb.client.soTimeout</param-name>
<param-value>40000</param-value>
</init-param>
<init-param>
<param-name>jcifs.smb.client.responseTimeout</param-name>
<param-value>30000</param-value>
</init-param>
<init-param>
<param-name>jcifs.netbios.retryTimeout</param-name>
<param-value>10000</param-value>
</init-param>
<init-param>
<param-name>jcifs.netbios.baddr</param-name>
<param-value>192.168.67.255</param-value>
</init-param>
If I try to run url http://<machine>:8080/test-jcifs/ntlmhttpauthexample i
get login dialog and if i put username and password i didn't succeed with
login.
WHat is wrong in our setting for Jcifs. We use jcifs_krb5-1.2.13.jar
LOG FILE
NameQueryRequest[nameTrnId=1,isResponse=false,opCode=QUERY,isAuthAnswer=false,is
Truncated=false,isRecurAvailable=false,isRecurDesired=true,isBroadcast=false,res
ultCode=0,questionCount=1,answerCount=0,authorityCount=0,additionalCount=0,quest
ionName=ESOFT<1C>,questionType=0x0020,questionClass=IN,recordName=null,recordTyp
e=0x0000,recordClass=0x0000,ttl=0,rDataLength=0]
NetBIOS: new data read from socket
00000: 00 01 01 00 00 01 00 00 00 00 00 00 20 45 46 46 |............ EFF|
00010: 44 45 50 45 47 46 45 43 41 43 41 43 41 43 41 43 |DEPEGFECACACACAC|
00020: 41 43 41 43 41 43 41 43 41 43 41 42 4D 00 00 20 |ACACACACACABM.. |
00030: 00 01 |.. |
NameQueryResponse[nameTrnId=1,isResponse=true,opCode=QUERY,isAuthAnswer=true,isT
runcated=false,isRecurAvailable=true,isRecurDesired=true,isBroadcast=false,resul
tCode=0,questionCount=0,answerCount=1,authorityCount=0,additionalCount=0,questio
nName=null,questionType=0x0000,questionClass=IN,recordName=ESOFT<1C>,recordType=
0x0020,recordClass=IN,ttl=0,rDataLength=6,addrEntry=[Ljcifs.netbios.NbtAddress;@
d42d08]
00000: 00 01 85 80 00 00 00 01 00 00 00 00 20 45 46 46 |............ EFF|
00010: 44 45 50 45 47 46 45 43 41 43 41 43 41 43 41 43 |DEPEGFECACACACAC|
00020: 41 43 41 43 41 43 41 43 41 43 41 42 4D 00 00 20 |ACACACACACABM.. |
00030: 00 01 00 00 00 00 00 06 80 00 C0 A8 43 09 |..........LĘC. |
SmbComNegotiate[command=SMB_COM_NEGOTIATE,received=false,errorCode=0,flags=0x001
8,flags2=0xC003,signSeq=0,tid=0,pid=18942,uid=0,mid=1,wordCount=0,byteCount=12,w
ordCount=0,dialects=NT LM 0.12]
New data read: Transport0[ESOFT<1C>/192.168.67.9:0]
00000: FF 53 4D 42 72 00 00 00 00 98 03 C0 00 00 00 00 | SMBr......L....|
00010: 00 00 00 00 00 00 00 00 00 00 FE 49 00 00 01 00 |..........¦I....|
byteCount=32 but readBytesWireFormat returned 18
SmbComNegotiateResponse[command=SMB_COM_NEGOTIATE,received=false,errorCode=0,fla
gs=0x0098,flags2=0xC003,signSeq=0,tid=0,pid=18942,uid=0,mid=1,wordCount=17,byteC
ount=32,wordCount=17,dialectIndex=0,securityMode=0xF,security=user,encryptedPass
words=true,maxMpxCount=50,maxNumberVcs=1,maxBufferSize=16644,maxRawSize=65536,se
ssionKey=0x00000000,capabilities=0x0001F3FD,serverTime=Wed Jun 20 08:53:03
CEST
2007,serverTimeZone=65416,encryptionKeyLength=8,byteCount=32,encryptionKey=0xA59
49862E5A02909,oemDomainName=ESOFT]
treeConnect: unc=\\ESOFT\IPC$,service=?????
sessionSetup: accountName=GUEST,primaryDomain=?
LM_COMPATIBILITY=0
00000: BE 6B C6 4C 94 BB C0 62 BC EB FB 40 B4 F9 33 04 |żkĂL.¬Lb-Űű@+¨3.|
00010: 4E FD 4D 93 CD 15 4C 1F 3F AF AC 93 58 A8 8D 25 |NřM.=.L.?»Č.XĘ.%|
00020: 91 2A D9 73 3E BA 77 B5 |.*-s>¦wÁ |
update: 0 0:40
00000: BE 6B C6 4C 94 BB C0 62 BC EB FB 40 B4 F9 33 04 |żkĂL.¬Lb-Űű@+¨3.|
00010: 4E FD 4D 93 CD 15 4C 1F 3F AF AC 93 58 A8 8D 25 |NřM.=.L.?»Č.XĘ.%|
00020: 91 2A D9 73 3E BA 77 B5 |.*-s>¦wÁ |
update: 1 4:156
00000: FF 53 4D 42 73 00 00 00 00 18 07 C0 00 00 00 00 | SMBs......L....|
00010: 00 00 00 00 00 00 00 00 00 00 FE 49 00 00 02 00 |..........¦I....|
00020: 0D 75 00 70 00 04 41 0A 00 01 00 00 00 00 00 00 |.u.p..A.........|
00030: 00 00 00 00 00 00 00 54 10 00 00 33 00 00 47 00 |.......T...3..G.|
00040: 55 00 45 00 53 00 54 00 00 00 3F 00 00 00 57 00 |U.E.S.T...?...W.|
00050: 69 00 6E 00 64 00 6F 00 77 00 73 00 20 00 58 00 |i.n.d.o.w.s. .X.|
00060: 50 00 00 00 6A 00 43 00 49 00 46 00 53 00 00 00 |P...j.C.I.F.S...|
00070: 04 FF 00 00 00 00 00 01 00 21 00 00 5C 00 5C 00 |. .......!..\.\.|
00080: 45 00 53 00 4F 00 46 00 54 00 5C 00 49 00 50 00 |E.S.O.F.T.\.I.P.|
00090: 43 00 24 00 00 00 3F 3F 3F 3F 3F 00 |C.$...?????. |
digest:
00000: 5A F7 D1 ED 38 E0 BE 93 8D 6E B3 7B 4C 37 60 DC |Z¸ĐÝ8Óż..n-{L7`-|
SmbComSessionSetupAndX[command=SMB_COM_SESSION_SETUP_ANDX,received=false,errorCo
de=0,flags=0x0018,flags2=0xC007,signSeq=0,tid=0,pid=18942,uid=0,mid=2,wordCount=
13,byteCount=51,andxCommand=0x75,andxOffset=112,snd_buf_size=16644,maxMpxCount=1
0,VC_NUMBER=1,sessionKey=0,passwordLength=0,unicodePasswordLength=0,capabilities
=4180,accountName=GUEST,primaryDomain=?,NATIVE_OS=Windows
XP,NATIVE_LANMAN=jCIFS
]
SmbComTreeConnectAndX[command=SMB_COM_TREE_CONNECT_ANDX,received=false,errorCode
=0,flags=0x0018,flags2=0x0000,signSeq=0,tid=0,pid=18942,uid=0,mid=0,wordCount=4,
byteCount=33,andxCommand=0xFF,andxOffset=0,disconnectTid=false,passwordLength=1,
password=,path=\\ESOFT\IPC$,service=?????]
New data read: Transport0[ESOFT<1C>/192.168.67.9:0]
00000: FF 53 4D 42 73 00 00 00 00 98 07 C0 00 00 23 5F | SMBs......L..#_|
00010: 32 4A C4 36 72 11 00 00 03 F0 FE 49 00 A0 02 00 |2J¦6r....¦I.á..|
SmbComSessionSetupAndXResponse[command=SMB_COM_SESSION_SETUP_ANDX,received=false
,errorCode=0,flags=0x0098,flags2=0xC007,signSeq=1,tid=61443,pid=18942,uid=40960,
mid=2,wordCount=3,byteCount=152,andxCommand=0x75,andxOffset=193,isLoggedInAsGues
t=false,nativeOs=Windows Server 2003 R2 3790 Service Pack
1,nativeLanMan=Windows
Server 2003 R2 5.2,primaryDomain=ESOFT]
treeConnect: unc=\\ESOFT\IPC$,service=?????
sessionSetup: accountName=hattila,primaryDomain=ESOFT
update: 0 0:40
00000: BE 6B C6 4C 94 BB C0 62 BC EB FB 40 B4 F9 33 04 |żkĂL.¬Lb-Űű@+¨3.|
00010: 4E FD 4D 93 CD 15 4C 1F 3F AF AC 93 58 A8 8D 25 |NřM.=.L.?»Č.XĘ.%|
00020: 91 2A D9 73 3E BA 77 B5 |.*-s>¦wÁ |
update: 1 4:192
00000: FF 53 4D 42 73 00 00 00 00 18 07 C0 00 00 02 00 | SMBs......L....|
00010: 00 00 00 00 00 00 00 00 00 00 FE 49 00 00 03 00 |..........¦I....|
00020: 0D 75 00 94 00 04 41 0A 00 01 00 00 00 00 00 18 |.u....A.........|
00030: 00 00 00 00 00 00 00 54 10 00 00 57 00 C6 62 D3 |.......T...W.ĂbË|
00040: 31 07 5C 0D CF 1C 39 3F FB FE 7A 38 CC 58 3B A6 |1.\.¤.9?ű¦z8¦X;Ž|
00050: 05 77 38 D6 71 00 68 00 61 00 74 00 74 00 69 00 |.w8Íq.h.a.t.t.i.|
00060: 6C 00 61 00 00 00 45 00 53 00 4F 00 46 00 54 00 |l.a...E.S.O.F.T.|
00070: 00 00 57 00 69 00 6E 00 64 00 6F 00 77 00 73 00 |..W.i.n.d.o.w.s.|
00080: 20 00 58 00 50 00 00 00 6A 00 43 00 49 00 46 00 | .X.P...j.C.I.F.|
00090: 53 00 00 00 04 FF 00 00 00 00 00 01 00 21 00 00 |S.... .......!..|
000A0: 5C 00 5C 00 45 00 53 00 4F 00 46 00 54 00 5C 00 |\.\.E.S.O.F.T.\.|
000B0: 49 00 50 00 43 00 24 00 00 00 3F 3F 3F 3F 3F 00 |I.P.C.$...?????.|
digest:
00000: C2 19 E5 A5 C6 95 26 D3 B9 C5 D0 DE 1C 9E 74 73 |T.ňąĂ.&˦+đŮ..ts|
SmbComSessionSetupAndX[command=SMB_COM_SESSION_SETUP_ANDX,received=false,errorCo
de=0,flags=0x0018,flags2=0xC007,signSeq=2,tid=0,pid=18942,uid=0,mid=3,wordCount=
13,byteCount=87,andxCommand=0x75,andxOffset=148,snd_buf_size=16644,maxMpxCount=1
0,VC_NUMBER=1,sessionKey=0,passwordLength=24,unicodePasswordLength=0,capabilitie
s=4180,accountName=hattila,primaryDomain=ESOFT,NATIVE_OS=Windows
XP,NATIVE_LANMA
N=jCIFS]
SmbComTreeConnectAndX[command=SMB_COM_TREE_CONNECT_ANDX,received=false,errorCode
=0,flags=0x0018,flags2=0x0000,signSeq=0,tid=0,pid=18942,uid=0,mid=0,wordCount=4,
byteCount=33,andxCommand=0xFF,andxOffset=0,disconnectTid=false,passwordLength=1,
password=,path=\\ESOFT\IPC$,service=?????]
New data read: Transport0[ESOFT<1C>/192.168.67.9:0]
00000: FF 53 4D 42 73 22 00 00 C0 98 07 C0 00 00 C4 B9 | SMBs"..L..L..¦¦|
00010: B3 7D 35 D1 03 14 00 00 00 00 FE 49 00 00 03 00 |-}5Đ......¦I....|
SmbComSessionSetupAndXResponse[command=SMB_COM_SESSION_SETUP_ANDX,received=false
,errorCode=Access is
denied.,flags=0x0098,flags2=0xC007,signSeq=3,tid=0,pid=1894
2,uid=0,mid=3,wordCount=0,byteCount=0,andxCommand=0xFF,andxOffset=0,isLoggedInAs
Guest=false,nativeOs=,nativeLanMan=,primaryDomain=]
NtlmHttpFilter: ESOFT\hattila: 0xC0000022: jcifs.smb.SmbAuthException:
Access is
denied.
--
View this message in context: http://www.nabble.com/NTLM-HTTP-AUTHENTICATION-problem-tf3950633.html#a11208232
Sent from the Samba - jcifs mailing list archive at Nabble.com.
More information about the jcifs
mailing list