On Fri, 2003-10-24 at 06:53, Chu, Dan [IT] wrote: > Hello, > Has anyone successfully configured Samba 3.0 to authenticate using NTLMv2 > only? I have below entry in smb.conf: > password server = <domain controller> > > to use domain controller for user authentication and DC is configured with > Level 5 - DC refuses LM and NTLM authentication (accepts only NTLMv2). So > far I got: "System error 1326 has occurred. > Logon failure: unknown user name or bad password." errors. > > I am not sure what option(s) to use in the smb.conf file to make it work. My > understanding is that Samba 3.0 defaults to NTLMv2 if password server is > configured to accept NTLMv2.
As a server, Samba 3.0 implements NTLMv2 by default. Samba also passes on NTLMv2 authentication attempts to the DC without modification, so it can validate them. As a client, you need to specify 'client ntlmv2 auth = yes' to force Samba to use NTLMv2, as it is incompatible with older servers. It is not possible to 'modify' an NTLM authentication request into NTLMv2, so if your clients are not configured correctly, they will not correctly talk to an NTLMv2 enforcing server/domain. Andrew Bartlett -- Andrew Bartlett [EMAIL PROTECTED] Manager, Authentication Subsystems, Samba Team [EMAIL PROTECTED] Student Network Administrator, Hawker College [EMAIL PROTECTED] http://samba.org http://build.samba.org http://hawkerc.net
signature.asc
Description: This is a digitally signed message part
-- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
