Was this page helpful?
Your feedback about this content is important. Let us know what you think.
Additional feedback?
1500 characters remaining
Export (0) Print
Expand All

3.1.5.2.1 Verifying Responses with Sub-Authentication Packages

The request to verify by a sub-authentication package is indicated by the ParameterControl field of the LogonInformation parameter.<26>

An example of sub-authentication package usage occurs with remote access authentications using the CHAP ([RFC1994]) method. In such cases, response computation of a MD5 hash value ([RFC1994]) is used instead of NTOWF.

Using the NRPC generic pass-through ([MS-NRPC] section 3.2.4.1) MAY result in invoking a custom sub-authentication package at the DC, per the indication of the ParameterControl field of the LogonInformation parameter. In this case, such a sub-authentication package MUST serve as a custom response verification instead of using the method specified by section 3.3 of [MS-NLMP]. For more information about this sub-authentication package, see [MSDN-0SUBAUTHROUTINE9].

Show:
© 2015 Microsoft