Important Notice: Our web hosting provider recently started charging us for additional visits, which was unexpected. In response, we're seeking donations. Depending on the situation, we may explore different monetization options for our Community and Expert Contributors. It's crucial to provide more returns for their expertise and offer more Expert Validated Answers or AI Validated Answers. Learn more about our hosting issue here.

How do I do NTLM HTTP authentication (a.k.a Single Sign On) for my website?

a.k.a authentication http NTLM website
1
Posted

How do I do NTLM HTTP authentication (a.k.a Single Sign On) for my website?

0 CommentsAdd a Comment

1 Answer

0

See “Jespa”: http://www.ioplex.com/jespa.html Jespa is a complete NTLM implementation in 100% Java that properly implements both the server and client side of NTLMv2, NTLMv1, NTLM2 Session Security and Key Exchange. Of particular interest to users of the old JCIFS SSO Filter, Jespa can properly authenticate NTLMv2 clients just like a Windows server does (using the NetrLogonSamLogon DCERPC call over NETLOGON w/ Secure Channel) and it includes an HTTP SSO Servlet Filter. Note: Jespa uses JCIFS for DCERPC transport and some basic client side NTLM calculations. Jespa is not Open Source (although it is free for up to 25 users). Please contact IOPLEX Software support if you have any questions regarding Jespa. Note: The old SSO Filter that used to be included with JCIFS used a “man in the middle” technique that cannot support NTLMv2 and has therefore been removed from the JCIFS package.

0 CommentsAdd a Comment

Related Questions

What is your question?

*Sadly, we had to bring back ads too. Hopefully more targeted.

Experts123