SMB Authentication: The Basics


Choosing the Challenge/Response Algorithm

The default for most clients today is to send LM and NTLM (both).

On Windows systems, you must fiddle this registry entry:

HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\LSA\LMCompatibility[Level]

LevelClientServer
0-1LM, NTLMAny
2NTLM, NTLMAny
3LMv2, NTLMv2Any
4LMv2, NTLMv2NTLM, LMv2, NTLMv2
5LMv2, NTLMv2LMv2, NTLMv2
<Back] SambaXP / April, 2003 [Next>