Can Samba 3.0 do raw NTLMSSP?

Michael B Allen ioplex at gmail.com
Sat Dec 6 20:22:22 GMT 2008


Hi,

Can Samba 3.0 do raw NTLMSSP without SPNEGO?

We just implemented NTLMv2 in JCIFS and we have extended security
turned on by default now. But JCIFS is failing with Samba 3.0 now
because it the raw NTLMSSP Type1Message blob is being rejected with
STATUS_LOGON_FAILURE.

Does a more recent version of Samba 3.0 support raw NTLMSSP?

We can of course turn off extended security but since there's no way
to negotiate NTLMv1 vs. NTLMv2 it's painful to have to change the
config to talk to a specific server.

Mike

-- 
Michael B Allen
PHP Active Directory SPNEGO SSO
http://www.ioplex.com/


More information about the samba-technical mailing list