[Samba] How to disable NTLM authentication on Samba
Rowland Penny
rpenny at samba.org
Wed Oct 10 20:34:19 UTC 2018
On Wed, 10 Oct 2018 19:52:41 +0000 (UTC)
Reinaldo Souza Gomes <reinaldosouzagomes at yahoo.com.br> wrote:
> Forgive me if I have misundertood your words, but what I want is to
> prevent Samba from accepting NTLM(v1, v2, SSP, or whatever) and
> forwarding it, since SSSD does not support it. I am not trying to get
> SSSD to support any kind of NTLM. So, this would be a Samba issue,
> not SSSD's. Isn't that correct? Putting it in another words: what can
> I do (preferrably on the Samba server) to prevent windows clients
> from successfully sending NTLM authentication to my Samba server?
> Em quarta-feira, 10 de outubro de 2018 16:29:28 BRT, Rowland Penny
> via samba <samba at lists.samba.org> escreveu: On Wed, 10 Oct 2018
> 18:50:23 +0000 (UTC) Reinaldo Souza Gomes via samba
> <samba at lists.samba.org> wrote:
>
> >
> > How can I make sure that NTLM(SSP) will never be used??
> >
Let me put it this way:
Samba isn't forwarding anything to sssd
Samba isn't doing your authentication, sssd is
Your windows clients are talking directly to sssd
This means you need to stop NTLMv1 from your Clients (I hope you
mean NTLMv1, because if you mean all NTLM versions there is a simple
solution, turn off your Windows machines.)
Whatever, this is not a Samba problem.
Rowland
More information about the samba
mailing list