thanks for response.
I don't undertand why I have to deal with MSRPC/SecureChannel with
NTLMv2 response types.
What I tried so far is to force the browser to only send NTLMv2 via
HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\LSA
\LMCompatibilityLevel = 3
This works and communication is possible without signing and sealing.
Now I'm toying around with the message flags to see how I can
initialte a NTLMv2 from server side.
cu
Cornelius
Am 07.01.2010 um 16:16 schrieb Michael B Allen:
> On Thu, Jan 7, 2010 at 8:56 AM, Cornelius Weiss
> <c.weiss@metaways.de> wrote:
>> Hi,
>> I need to implement NTLM auth support. NTLM is a kind of HTTP
>> Authentication, so imho it belongs somewhere into the sope of the
>> Zend_Auth_Http Adapter.
>> Reading the code of Zend_Auth_Http, I realised, that I can't add NTLM
>> support without changeing the Zend_Auth_Http class.
>> So please advice which way to go:
>> - Let Basic and Digest also be extra classes -> having
>> Zend_Auth_Http_Basic
>> / ... or
>> - Have Basic and Digest in the Http base class and implement a plugin
>> structure for others
>
> Hi Cornelius,
>
> Note that any solution would have to implement NTLMv2. Virtually all
> of the existing NTLM solutions out there with the exception of a few
> like our stuff and Samba's do not do NTLMv2 - they do the lowly,
> insecure and now obsolete NTLMv1. Authenticating clients using NTLMv2
> requires doing MSRPC with SecureChannel which is to say it is probably
> something you do not want to mess with.
>
> Mike
>
> --
> Michael B Allen
> PHP Active Directory Integration
> http://www.ioplex.com/plexcel.html
Dipl.-Phys. Cornelius Weiss
Tine 2.0 Lead Developer
Metaways Infosystems GmbH
Pickhuben 2, D 20457 Hamburg
E-Mail: c.weiss@metaways.de
Web: http://www.metaways.de
Tel: +49 (0)40 317031-545
Fax: +49 (0)40 317031-945
Mobile: +49 (0)170 3322254
--- Tine 2.0 "August (2009/11)" is released, check it out from www.tine20.org
---
Metaways Infosystems GmbH - Sitz: D-22967 Tremsbüttel
Handelsregister: Amtsgericht Ahrensburg HRB 4508
Geschäftsführung: Hermann Thaele, Lüder-H.Thaele
没有评论:
发表评论