[Samba] Forcing clients to use NTLMv2 in 3.6.12

Paul Venzke venzkep at srt.com
Wed Jun 19 23:23:33 MDT 2013

>-----Original Message-----
>From: samba-bounces at lists.samba.org [mailto:samba-
>bounces at lists.samba.org] On Behalf Of Shaw, Kevin
>Sent: Wednesday, June 19, 2013 12:03 PM
>To: samba at lists.samba.org
>Subject: [Samba] Forcing clients to use NTLMv2 in 3.6.12
>I need to force XP clients to use NTLMv2 when mapping to samba 3.6.12.
>My config is:
>ntlm auth = No
>client NTLMv2 auth = Yes
>client lanman auth = No
>client plaintext auth = No
>lanman auth = No
>XP systems can still map shares with the above config.
>If I add:
>max protocol = SMB2
>min protocol = SMB2
>W7 systems map shares, XP systems cannot map shares even if I change LAN
>Manager authentication level to: Send NTLMv2 response only or Send
>NTLMv2 response only\refuse LM & NTLM.
>Any ideas?


AFAIK Windows XP does not understand SMB2.  SMB2 can only be used by Vista
or higher.  Try removing 
"min protocol =SMB2" or setting "min protocol = NT1".  Windows 7 should
negotiate SMB2 and Windows XP NT1 (CIFS).

"If it ain't broken you're not trying"

More information about the samba mailing list