Hyland Community
Help
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 

NTLMv2/SSO/AD

ivan_plestina
Champ in-the-making
Champ in-the-making

‎01-27-2009 10:02 AM

I'm trying to configure SSO with Alfresco 3 Stable in an AD environment. Documentation for NTLM is quite confusing when regarding to NTLMv2 usage. After configuring client to only send NTLMv2 hashes I get the following error when trying to access Alfresco from IE:

[org.alfresco.web.app.servlet.NTLMAuthenticationFilter] Client NC8000 using NTLMv2 logon, not valid with passthru authentication

Same config works perfectly when LM & NTLM are enabled.

Is it possible to have SSO using NTLMv2 and if yes can you post required config changes/example (for both web client and cifs)?
Labels:
0 Kudos
1 REPLY 1

phileas
Champ in-the-making
Champ in-the-making

‎06-19-2009 03:12 AM

Hi,

looing at the wiki page at: http://wiki.alfresco.com/wiki/3.0_Configuring_NTLM

Note that the support of NTLMv2 is only for configurations storing psswords (or hashes) in Alfresco. As NTLMv2 has been designed to avoid "man-in-the-middle" attacks, any passthru authentication is impossible.

So I think NTLMv2 is not possible with passthru to ADS.

Regards,

P.
0 Kudos
Getting started

Tags

Find what you came for

We want to make your experience in Hyland Connect as valuable as possible, so we put together some helpful links.

Copyright © 2025 Khoros, LLC
li.common.scroll-to.top