[Samba] ntlm challenges not working

robert rottermann robert at redcor.ch
Tue Apr 7 11:25:28 GMT 2009

Hi there,

I try to have a XP box using ntlm authentication when accessing a samba domain.

In apache I have the following stanza:
<Location "/">
    AuthName "NTLM Authentication thingy"
    NTLMAuth on
    NTLMAuthHelper "/opt/samba/bin/ntlm_auth --helper-protocol=squid-2.5-ntlmssp"
    NTLMBasicAuthoritative on
    AuthType NTLM
    require valid-user

In IE7 on the client I added the apache site to the list of intranet sites so
windows should use ntlm to send its credentials.

now when I access the apache site appache issues a challenge and announces it
would accept ntlm.
I checked that using whireshark, the relevant frame shows the following:

    Hypertext Transfer Protocol
    HTTP/1.1 401 Authorization Required\r\n
        Request Version: HTTP/1.1
        Response Code: 401
    Date: Tue, 07 Apr 2009 10:53:07 GMT\r\n
    Proxy-Authenticate: NTLM\r\n
    Proxy-Authenticate: NTLM\r\n
    Content-Length: 622
    Keep-Alive: timeout=15, max=100\r\n
    Connection: Keep-Alive\r\n
    Content-Type: text/html; charset=iso-8859-1\r\n

however windows does not answer at all. IE does nothing but issuing a
"authorization required" error. Whireshark shows no more traffic.

can anybody help me to resolve this? (I am really desperate.., having worked
trough everyy tutorial I can find)


More information about the samba mailing list