Logga

NTLM for more information

Authentication for Windows 2003 Server

Windows 2003 Server uses SMB signing as its default setting. In order for SiteVision to authenticate these servers, additional parameters specified in the system.properties file are needed. The parameters are as follows:

jcifs.smb.client.username=myusername
jcifs.smb.client.password=mypassword
jcifs.smb.client.domain=mydomain

  • myusername is the username of a user that is used to sign information that is sent to the server. It can be an arbitrary user.
  • mypasswordis the password for this user
  • mydomainis the domain that the user is in.

Authentication for Windows 2008 Server

Windows 2008 Server requires NTLMv2 as the default setting. The method that SiteVision uses for NTLM authentication cannot work by definition. For it to work, you must enable compatibility mode on both AD servers and sometimes also for clients (especially on Windows 7 clients). The flag that has to be set is called

LMCompatibilityLevel

it must be set to 0 (0: Send LM & NTLM responses), in some cases you also need to set

NoLMHash

to 0. The flag must therefore be set for BOTH client and server.

General settings

Note that the website that the user will log on to must be in the Trusted websites list. If it is not, the operating system will never send an NTLM login, and the users will not be automatically logged on.

The page published: 2019-02-28

Find us!

SiteVision AB (Headquarter)
Vasagatan 10
702 10 Orebro
Sweden


Info: +46 19-17 30 30
Support: +46 19-17 30 39