question-mark
Stuck on an issue?

Lightrun Answers was designed to reduce the constant googling that comes with debugging 3rd party libraries. It collects links to all the places you might be looking at while hunting down a tough bug.

And, if you’re still stuck at the end, we’re happy to hop on a call to see how we can help out.

Supports only NTLMv1? or supports NTLMv2 as well?

See original GitHub issue

Hello Sam,

My SharePoint site uses NTLMv2 & on the IIS server ‘lmcompatibilitylevel’ registry is set as ‘5’.

This module supports only NTLMv1? I see that in the code the naming convention is as below.

create_LM_hashed_password_v1

Wondering if this only supports NTLMv1.

I am getting always 401 Unauthorized from SharePoint site & its passing all handshake including type3 message. But the response comes as 401.

Issue Analytics

  • State:closed
  • Created 7 years ago
  • Comments:13 (3 by maintainers)

github_iconTop GitHub Comments

3reactions
emcho92commented, Jan 19, 2017

I can confirm that this does not work with NTLM v2. This project seems to support v2, but it is not working for me for some reason. I just started looking into the code, and if get it working I’ll follow up here, on what can be done to support NTLM v2.

2reactions
s-KaiNetcommented, Oct 23, 2018

I use it in my own module, so you can dig into the file OnpremiseUserCredentials.ts for a real usage example.

The class itself performs NTLM auth and returns credentials via Authorization header. You can attach that header to your ongoing http request against NTLM protected resource. keep alive agent also seems required.

Read more comments on GitHub >

github_iconTop Results From Across the Web

Security guidance for NTLMv1 and LM network authentication
All supported versions of the Windows operating system support NTLMv2. Windows NT 4.0 SP6a also supports NTLMv2. Therefore, there is a very small...
Read more >
How to Disable NTLM Authentication in Windows Domain?
In this article, we'll consider how to disable NTLMv1 and NTLMv2 protocols and start using Kerberos in your Active Directory domain.
Read more >
NTLMv1 or NTLMv2? Does it even matter? - CalCom
Better solutions are already in use, and yet NTLM protocol is still here. Learn all about the differences between NTLMv1 and MTKMv2.
Read more >
NTLM authentication: What it is and why it's risky
In 1998, Microsoft released an improved version, NTLMv2, ... Plus, the NTLM authentication protocol does not support multifactor ...
Read more >
The NTLM Authentication Protocol and Security Support ... - curl
The result of the configuration and planning required to deploy NTLMv2 is that many hosts just use the default setting (NTLMv1), and NTLMv2...
Read more >

github_iconTop Related Medium Post

No results found

github_iconTop Related StackOverflow Question

No results found

github_iconTroubleshoot Live Code

Lightrun enables developers to add logs, metrics and snapshots to live code - no restarts or redeploys required.
Start Free

github_iconTop Related Reddit Thread

No results found

github_iconTop Related Hackernoon Post

No results found

github_iconTop Related Tweet

No results found

github_iconTop Related Dev.to Post

No results found

github_iconTop Related Hashnode Post

No results found