NTLMv2 Support in Cyrus SASL

Dan White dwhite at olp.net
Tue Oct 6 10:11:36 EDT 2009


On 06/10/09 18:01 +0530, Dhruva T S wrote:
>
>Dan,
>
>
>Just for testing, I replaced the ntlm.c file in plugins folder with
>the contents of ntlm_samba.c (Got this file from previous attempts).
>Without applying the patch, I did configure and make.
>
>
>Then I did ldapsearch -I -H ldap://ldap.example.org -b 'ou=Users,ou=readimanager'.
>After entering the username,password and realm, I got an error saying that
>"Unable to contact to LDAP server (-1)."
>The LDAP server is at different location. 
>(I was able to connect using the above command by using Cyrus SASL 2.1.23 
>which uses NTLMv1)
>
>When I observed in ethereal, the TYPE 3 NTLM message was not proper.
>Ethereal showed 'Un reassembled TCP segmements' and the credentials field was absent.
>I came to know that this patch uses samba's ntlm_auth tool.
>I don't know how to use ntlm_auth with OpenLDAP and Cyrus SASL plugin.

Dhruva,

I'm afraid I can't offer a lot of assistance with fixing/customizing that
patch. You might contact the author of the patch, which is a samba
developer, for some ideas.

-- 
Dan White
BTC Broadband


More information about the Cyrus-sasl mailing list