question regarding NTLM authentication

Andrew Bartlett abartlet at
Tue May 23 22:32:29 GMT 2006

On Tue, 2006-05-23 at 21:35 +0200, Stefan (metze) Metzmacher wrote:
> Hash: SHA1
> Murali Bashyam schrieb:
> > I am investigating  the samba4.0 code to see if it can act as a
> > authentication proxy device sitting in the middle between a CIFS client and
> > server. It performs pass-through NTLM authentication with the CIFS client (
> > i.e samba machine as a server,
> I think we don't have pass-through auth working fully in samba4 yet.

We don't.  I keep meaning to implement this (using the credentials code
as the glue), but it hasn't happened yet.  We do support pass-though
authentication with GSSAPI/krb5, and forward-able tickets.

> > talking to the NT domain controller), and
> > next turning around acting on behalf of that logged in user as a client
> > towards the actual CIFS server.
> > 
> > Is there anyway to accomplish this in the samba4.0 code base? If so, can
> > someone point me to the relevant code?
> you should look at ntvfs/cifs/
> it provides a file share and proxy requests to another server.
> but there're some issues with multiple SMB session on one SMB tree connect.
> but you should play with it a bit...

The first task is for someone to re-implement 'security=server' in
Samba4, using the credentials system as the glue.

Andrew Bartlett

Andrew Bartlett                      
Authentication Developer, Samba Team 
Student Network Administrator, Hawker College
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 191 bytes
Desc: This is a digitally signed message part
Url :

More information about the samba-technical mailing list