[LPS-50678] NTLMv2 not working - Liferay Issues

XML

Word

Printable

Details

Type: Bug
Status: Closed
Resolution: Inactive
Affects Version/s: 6.1.2 CE GA3, 6.2.1 CE GA2
Fix Version/s: None
Component/s: Application Security, Application Security > NTLM
Labels:
- security-filter-bugs

Description

It seems that Liferay's NTMLv2 SSO implementation is not working.

Authentication with NTMLv2 fails, user/browser is prompted to log in again using NTMLv1. With NTMLv1 authentication works fine. So it looks like it works.
But if you set in your domain LAN Manager authentication level to 5 (Send NTLMv2 response only. Refuse LM & NTLM), which is default in new Windows, authentication fails.

We use Windows Server 2012 as a DomainController and workstations are Win7 or Win8.

Simillar issues was reported for Liferay 6.1 (https://issues.liferay.com/browse/LPS-33628, https://issues.liferay.com/browse/LPS-46316) but not fixed yet.

Attachments

Issue Links

is related to

LPS-46316 NTLMv2 only not supported

Closed

LPS-33628 Fix code to support NTLMv2

Open

Activity

People

Assignee:: Michael Saechang

Reporter:: Ondřej Životský

Participants of an Issue:: Michael Saechang, Ondřej Životský

Recent user:: Esther Sanz

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Dates

Created:: 08/Oct/14 5:12 AM

Updated:: 07/Dec/15 1:43 AM

Resolved:: 17/Aug/15 3:02 PM

Days since last comment:: 6 years, 8 weeks, 5 days ago

Packages

Version	Package