loune / php-ntlm Goto Github PK

i would like to get the windows username without prompt. is that possible? @loune

Something is wrong here with $domain:

function ntlm_get_challenge_msg($msg, $challenge, $targetname, $domain,
    $computer, $dnsdomain, $dnscomputer)
{
        $domain = ntlm_field_value($msg, 16);

See https://github.com/loune/php-ntlm/blob/master/ntlm.php#L118

It is only used once, so maybe the function parameter is not needed?

Hello,
can you please gave me a detailed example?
I always get:
"Authentication Required
NTLMv2 response required. Please force your client to use NTLMv2."

errors.
I use Samba with OpenLDAP.

I am a longtime user of your original NTLM script in my workflow application. I just need to pull the Windows username from a Type 3 response, and I don't care about secure authentication, hashes, etc.

I am hearing from coworkers that our Win10 upgrade will only allow NTLMv2 in an HTTP session, and that your original script won't work. I don't see in the ntlm.html protocol document how the Type 3 message in HTTP auth differs from v1 to v2. I have read elsewhere that the Type 3 is encrypted with the client's password hash (unsure on this).

Can I simply extract the username in v2 without using your setuid binary or otherwise involving an Active Directory server?

Many, many thanks for any information you might provide.

Hello,

It looks like a great library but I can't figure out what parameters set in to the ntlm_prompt() call.

My goal is the user is directly logged without question for the user, but to the AD.
My apologies, but I am quite new on this NTLM stuff.

Let's say my base DN is COM.CITY, so I use this parameters:

$testWebsite = "http://desired/place/to/go/after/login";
$testDomain = "COM.CITY";
$myComputer = ? // I could guess the IP
$testDomainLocal = "COM.CITY";
$myComputerLocal = ? // I could guess the IP

$auth = ntlm_prompt($testWebsite , $testDomain, $myComputer, $testDomainLocal, $myComputerLocal, "get_ntlm_user_hash");

I don't know what *Local stands for and I doubt if the computer value could be its IP.

I'll appreciate your clarifications.

Thank you.

Hi !

You have an example of using NTLM v1 here https://loune.net/2007/10/simple-lightweight-ntlm-in-php/

Using this library, how would the code look that achieves the same ?

Thanks in advance !