Questions tagged [ntlm]

NTLM (NT LAN Manager) is a suite of Microsoft security protocols that provides authentication, integrity, and confidentiality to users.

NTLM has been deprecated for many uses as it doesn't support the latest standards:

Implementers should be aware that NTLM does not support any recent cryptographic methods, such as AES or SHA-256. It uses cyclic redundancy check (CRC) or message digest algorithms (RFC1321) for integrity, and it uses RC4 for encryption. Deriving a key from a password is as specified in RFC1320 and FIPS46-2. Therefore, applications are generally advised not to use NTLM - MSDN and to use Kerberos instead.

Despite this NTLM is still used inside enterprise networks where Microsoft Active Directory provides the enterprise directory service for Integrated Windows Authentication when Kerberos is not available.

NTLM over HTTP handshake is fairly simple:

Request  - [unauthenticated - no user info passed]

Response - 401 Unauthorized
           WWW-Authenticate: NTLM


Request  - Authorization: NTLM <base64-encoded type-1-message>

Response - 401 Unauthorized
           WWW-Authenticate: NTLM <base64-encoded type-2-message>


Request  - Authorization: NTLM <base64-encoded type-3-message>

           Server can now check username/password against LDAP from type-3 message
Response - 200 Ok [now authenticated & authorised]

1230 questions

votes

10 answers

WCFTestClient The HTTP request is unauthorized with client authentication scheme 'Anonymous'

I've created one WCF service and deployed it on Server. When I browse this service it gives me positive response with ?wsdl URL. Now I'm trying to test the service through WCF Test client. It shows proper metadata. But when I try to invoke any of…

asked Jun 25 '09 at 13:46

user82613

1,323
2
12
17

votes

9 answers

Unable to get windows authentication to work through local IIS

So I've created a new ASP.NET MVC project using the intranet template. web.config contains the appropriate values (e.g. ). If I fire up the web app using the VS webserver, it all looks fine - the page shows my Windows…

asp.net-mvc iis windows-authentication ntlm http-status-code-401

asked Sep 12 '11 at 11:28

David

15,750
22
90
150

votes

8 answers

NPM behind NTLM proxy

Is it possible to run npm install behind an HTTP proxy, which uses NTLM authentication? If yes, how can I set the server's address and port, the username, and the password?

node.js npm ntlm http-proxy

asked Sep 02 '13 at 08:49

kol

27,881
12
83
120

votes

14 answers

401 response for CORS request in IIS with Windows Auth enabled

I'm trying to enable CORS support in my WebAPI project, and if I enable Anonymous Authentication then everything works fine, but with Windows Auth + disabled anonymous authentication, the OPTIONS request sent always returns a 401 unauthorized…

iis-7.5 windows-authentication asp.net-web-api ntlm cors

asked May 23 '12 at 15:25

dariusriggins

1,434
1
15
30

votes

4 answers

How to enable Auto Logon User Authentication for Google Chrome

I have a site I go to that allows me to auto log in with my creditentials (windows) and using Internet Explorer I can just set the option under "User Authentication" to "Automatic logon with current user name and password", but I'm wanting to use…

asp.net windows internet-explorer google-chrome ntlm

asked Oct 17 '11 at 23:47

daveomcd

6,367
14
83
137

votes

10 answers

The HTTP request is unauthorized with client authentication scheme 'Ntlm' The authentication header received from the server was 'NTLM'

I know there's a lot of questions on SO similar to this, but I couldn't find one for this particular issue. A couple of points, first: I have no control over our Sharepoint server. I cannot tweak any IIS settings. I believe our IIS server version…

c# .net sharepoint authentication ntlm

asked Apr 09 '10 at 15:55

Pandincus

9,506
9
43
61

votes

3 answers

Using Fiddler to sniff Visual Studio 2013 requests (proxy firewall)

I am having issues with Visual Studio 2013 and our corporate proxy (signin does not work, updates do not work, visual studio gallery does not work, nuget and git fail ). All of these are doing http or https requests. (e.g.…

visual-studio proxy wcf-security fiddler ntlm

asked Jan 10 '14 at 16:49

Dr.YSG

7,171
22
81
139

votes

3 answers

Authentication Test Servers

I'm searching for examples of public HTTPS sites that use one of the following authentication types - these sites will be used as test servers for an application currently under development. BASIC authentication DIGEST authentication NTLM…

testing authentication ssl https ntlm

asked Jun 28 '11 at 15:49

Chrisc

1,498
4
17
30

votes

3 answers

NTLM proxy without password?

I work on a corporate windows network (which I log in to) with a HTTP proxy. When I use Internet Explorer it magically uses the proxy without me needing to type in my password. Certain other programs seem to manage this too, like JavaWebStart has a…

authentication proxy curl ntlm sspi

asked Aug 14 '09 at 09:41

Nick Fortescue

43,045
26
106
134

votes

2 answers

Using curl with NTLM auth to make a post is failing

I can't seem to wrap my head around this. I'm trying to script automating an upload of a csv but the curl is failing with a 401. curl -v --ntlm -u username --upload-file ~/galaxy/forums/pt_update.csv…

http curl request ntlm

asked Mar 29 '13 at 04:05

Juddles

votes

4 answers

How to find if NTLM or Kerberos is used from WWW-Authenticate: Negotiate header

I am programming a client application in .Net that communicates with server via HTTP. I need to set different request buffering options in case of NTLM and Kerberos authorization. How to find out if NTLM or Kerberos is used? Is it possible to…

.net kerberos ntlm negotiate www-authenticate

asked Apr 08 '11 at 15:47

IT Hit WebDAV

5,652
12
61
98

votes

7 answers

Avoiding 401 response for each request using NTLM

We have here an asp.net 3.5 application using NTLM based windows authentication. The system runs on a private network that actually distributed over different geographic places (connected via VPN). We are now trying to optimize the website's…

iis iis-6 ntlm http-status-code-401

asked Aug 03 '09 at 13:58

Satumba

votes

2 answers

Configuring NuGet server to use Authentication

The release notes for NuGet 1.5 state NuGet now supports connecting to private repositories that require basic or NTLM authentication. However, the link contained in there simply leads to the hosting your own nuget feeds page, without any further…

authentication iis nuget ntlm nuget-server

asked Jul 29 '13 at 15:32

Wilbert

7,251
6
51
91

votes

4 answers

Javascript/Ajax NTLM Authentication

I am developing an HTML5 mobile app, which communicates with WebServices. WebServices use NTLM authentication protocol. I am having difficulties to handle the handshake via JavaScript. NTLM sends the 401 unauthorized as response to my POST, which I…

javascript jquery ajax web-services ntlm

asked Aug 30 '13 at 07:54

TryCatch

votes

1 answer

How to view NTLM challenge in Network View?

In chrome dev tools, how do i see all elements of a request, specifically the working of the Ntlm challenge? Ex. If i do a GET to a URL and the server issues a NTLM challenge, there are multiple requests and responses - the initial challenge, the…

google-chrome google-chrome-devtools ntlm

asked Jan 29 '15 at 17:44

Vivek

2,103
17
26

2 3

…

81 82 Next