NTLM Authentication, Part Server / Domain Controller

Question

Dear members,

in the document  http://msdn.microsoft.com/en-us/library/aa378749.aspx#  is described how the NTLM authentication works. We have our own client (written in java) and a server with api for autehtication. The server has all the necessary data for authentication (see below).

The question: how to send 

• User name
• Challenge sent to the client
• Response received from the client

to the domain controller ?  Is there any libraries (perhaps in java) or is there a description how to build the request (http ?).

Thanks in advance,

Michel

Answer 1

Hi Michel,

I believe you will find our open protocols documentation quite useful.

This is the link to the [MS-NLMP] NT LAN Manager (NTLM) Authentication Protocol Specification document: http://msdn.microsoft.com/en-us/library/cc236621.aspx


As you may notice, all our network protocols are documented for interoperability purposes.

Please let me know if you need further assistance.

Thanks!

---

SEBASTIAN CANEVARI - MSFT SEE Protocol Documentation Team

Answer 2

Also,

If you want to try a possible faster way, it would be a good idea to post your question on a forum like:

Directory Services

Discussion on Windows Server Active Directory services

http://social.technet.microsoft.com/Forums/en/winserverDS/threads/

Thanks,

---

SEBASTIAN CANEVARI - MSFT SEE Protocol Documentation Team

Answer 3

Hi Sebastian,

thanks a lot ! I have seen the document before, but it was too theoretically. You encouraged me check again it. Really, there is a description for communication between server and dc. One has to follow the div. references in the document.

Anyway I'd prefer a more practically description, I'll visit the mentioned newsgroup. In the meantime I experienced, getting the NT hash password from Windows XP is not so easy.

Is there perhaps a document, how to get the NT hash password from Windows XP ?

Thank you in advance,

Michel

P.S.  I had rate your answer as "excellent", but I don't know how to do it. Is it possible to change it ?

Answer 4

Hi Michel,

Reviewing my older threads I came across this last reply of yours.

I was able to see that you've posted your question on the forum that I've suggested and they told you to seek some help from Java.

I was wondering if you were able to resolve your issue at last.

Thanks!

---

SEBASTIAN CANEVARI - MSFT Senior SEE Protocol Documentation Team

Answer 5

Hi Ric,

 

I would appreciate to have some more insight on what type of information you are needing so I can help you with it.

 

Thanks and regards,

 

 

---

SEBASTIAN CANEVARI - MSFT Escalation Engineer Protocol Documentation Team

Answer 6

Hi - We are going to close this thread as there has been no response for several weeks. If you would like to reopen it, please reply with the information requested by Sebastian.

Thanks - Chris

---

Thanks - Chris

Answer 7

Hi Sebastuab

Ric is just a spam bot who use general phrases to disguise the hidden link seo spam in the reply. I think you can remove the spam.

---

---

The following is signature, not part of post
Please mark the post answered your question as the answer, and mark other helpful posts as helpful, so they will appear differently to other users who are visiting your thread for the same problem.
Visual C++ MVP