Using this adapted sample script it seems that it's not submitting the domain part of the user credentials to the server and I'm getting an unauthorised message.
Server rejects anything < NTLM2
#!/usr/bin/perl use LWP::UserAgent; use Authen::NTLM; use HTTP::Request::Common; use HTTP::Response; ntlmv2(1); my $url = 'http://server:port/path/script.aspx'; my $username="domain\\user_name"; my $password='password' ; my $host = 'server:port'; my $ua = LWP::UserAgent->new( keep_alive => 1 ); $ua->credentials( $host, '', $username, $password); my $req = GET $url; my $response = $ua->request($req); printf " %s\n", $response->status_line; printf "\n\n\n" . $response->content();
Gives me an error
"HTTP Error 401.1 - Unauthorized: Access is denied due to invalid credentials."Wireshark on the IIS server shows (amongst other things)
NTLMSSP NTLMSSP identified: NTLMSSP NTLM Message Type: NTLMSSP_AUTH (0x00000003) Lan Manager Response: [BLANKED OUT] NTLM Response: [BLANKED OUT] Domain name: ???? User name: user_name Host name: user_name Session key: Empty Flags: 0x00088205 Host: server:port
The "????" is the value for domain (or wireshark shows ???? for blank values, I'm not sure). Tried "forsmbg"s suggested fix for setting of $domain from here https://rt.cpan.org/Public/Bug/Display.html?id=9521#txn-1096169 but this doesn't make any difference.
Any suggestions on how to proceed gratefully received!
In reply to NTLM authentication with IIS 6 by mrlizard123
| For: | Use: | ||
| & | & | ||
| < | < | ||
| > | > | ||
| [ | [ | ||
| ] | ] |