Hyland Community
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

NTLMv2 and Passthru

carltonw
Champ in-the-making
Champ in-the-making

‎02-05-2009 10:54 AM

I'm getting this error in alfresco.log when I try to access my alfresco site using NTLM SSO passthru:

"client CW-VISTA using NTLMv2 logon, not valid with passthru authentication"

The documentation says that you can't use NTLMv2 with passthru so how can I use NTLM?
Labels:
0 Kudos
7 REPLIES 7

jtp
Champ in-the-making
Champ in-the-making

‎02-05-2009 01:33 PM

Edit your group policy, under computer configuration, security settings, local policies, security options.

You should see something about network security: Lan manager authentication level.
Try changing that to send lm & ntlm, and v2 if negotiated.
0 Kudos

carltonw
Champ in-the-making
Champ in-the-making

‎02-05-2009 03:24 PM

JTP,
Thanks for the response. Strange thing is that this worked on a previous try at getting this working.

Did you ever get NTLM passthru working with 3 Stable and Share?
Carlton.
0 Kudos

jtp
Champ in-the-making
Champ in-the-making

‎02-05-2009 03:34 PM

Single sign on, no.  NTLM manual authentication, yes.
0 Kudos

carltonw
Champ in-the-making
Champ in-the-making

‎02-05-2009 04:00 PM

Can you tell me how you got manual NTLM working for both Alfresco and Share? (did it break CIFS?)
If I could see your config files that would be great. thanks.
0 Kudos

jtp
Champ in-the-making
Champ in-the-making

‎02-06-2009 08:23 AM

using the instructions here: http://wiki.alfresco.com/wiki/3.0_Configuring_NTLM

Do everything under sections "Alfresco Explorer and WebDav SSO using NTLM " and "NTLM Passthru Authentication" but not "Alfresco Share SSO using NTLM " 
That will get SSO working for /alfresco and manual authentication working for Share.  This is in an AD environment with no LDAP sync.
And yes it broke CIFS.
0 Kudos

carltonw
Champ in-the-making
Champ in-the-making

‎02-06-2009 04:13 PM

JTP,
Thanks for your info. I'm now able to get Share and Alfresco sites working with NTLM. Strange thing is that I can't use an AD login on Share if I haven't logged in to the Alfresco site first.
Did you have this experience?

Now I'm working on the CIFS problem. It's definitely a config error since the log shows that CIFS and FTP won't even start.
0 Kudos

jtp
Champ in-the-making
Champ in-the-making

‎02-07-2009 01:59 AM

JTP,
Thanks for your info. I'm now able to get Share and Alfresco sites working with NTLM. Strange thing is that I can't use an AD login on Share if I haven't logged in to the Alfresco site first.
Did you have this experience?

Now I'm working on the CIFS problem. It's definitely a config error since the log shows that CIFS and FTP won't even start.

Currently, that's normal to only be able to sign in to share after signing in to alfresco.  I'm sure it's in the plan sometime to remove the requirement, but not yet. 

Best of luck to you on the CIFS front,  it seems to be one of the most posted about items on this forum.  I didn't find it important enough to go through the hassle.
0 Kudos
Getting started

Tags

Find what you came for

We want to make your experience in Hyland Connect as valuable as possible, so we put together some helpful links.

Copyright © 2025 Khoros, LLC