question regarding NTLM authentication
Andrew Bartlett
abartlet at samba.org
Tue May 23 22:32:29 GMT 2006
On Tue, 2006-05-23 at 21:35 +0200, Stefan (metze) Metzmacher wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> Murali Bashyam schrieb:
> > I am investigating the samba4.0 code to see if it can act as a
> > authentication proxy device sitting in the middle between a CIFS client and
> > server. It performs pass-through NTLM authentication with the CIFS client (
> > i.e samba machine as a server,
>
> I think we don't have pass-through auth working fully in samba4 yet.
We don't. I keep meaning to implement this (using the credentials code
as the glue), but it hasn't happened yet. We do support pass-though
authentication with GSSAPI/krb5, and forward-able tickets.
> > talking to the NT domain controller), and
> > next turning around acting on behalf of that logged in user as a client
> > towards the actual CIFS server.
> >
> > Is there anyway to accomplish this in the samba4.0 code base? If so, can
> > someone point me to the relevant code?
>
> you should look at ntvfs/cifs/
>
> it provides a file share and proxy requests to another server.
> but there're some issues with multiple SMB session on one SMB tree connect.
>
> but you should play with it a bit...
The first task is for someone to re-implement 'security=server' in
Samba4, using the credentials system as the glue.
Andrew Bartlett
--
Andrew Bartlett http://samba.org/~abartlet/
Authentication Developer, Samba Team http://samba.org
Student Network Administrator, Hawker College http://hawkerc.net
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 191 bytes
Desc: This is a digitally signed message part
Url : http://lists.samba.org/archive/samba-technical/attachments/20060524/ead25590/attachment.bin
More information about the samba-technical
mailing list