NTLM v2 serverside - how ?

Question

NTLM v2 serverside - how ?

Opened this issue 7 years ago · 1 comments

henrywood commented 7 years ago

Hi !

You have an example of using NTLM v1 here https://loune.net/2007/10/simple-lightweight-ntlm-in-php/

Using this library, how would the code look that achieves the same ?

Thanks in advance !

Answer 1 · 2018-09-02T12:17:18.000Z

The NTLM v1 code linked above is not really recommended since it takes any username the browser supplies and doesn't verify the password hash. If you really want to do this, you could possibly have something like:

function insecure_verify() {
  return true;
}

$auth = ntlm_prompt("testwebsite", "testdomain", "mycomputer", "testdomain.local", "mycomputer.local", null, "insecure_verify");

print_r($auth);

$auth should contain the username/domain. Note I haven't tested the code above and is highly not recommended using this for any type of authentication.