Export (0) Print
Expand All

4.6.2 NTLM Authentication Sequence

For NTLM authentication, the following sequence is used.

f3fa6f17-9ac7-4d8d-b013-d4ba9d678ca8

Figure 10: NTLM authentication sequence

  1. In response to a client LinkViewerToMacConnect message request, the server sends a LinkMacToViewerReportConnectedEX message with the following attributes:

    • The AuthenPackage field is set to NTLM.

    • The cbAuthenPackage field has a value of 5.

    The client and server then continue their normal sequence of commands.

  2. Eventually, the client sends a LinkViewerToMacOpenFile packet request, to which the server responds with a LinkMacToViewerSecurityChallenge message.

  3. The client sends a LinkViewerToMacSecurityResponse message to the server that contains the first NTLM authentication token, and the server responds with a LinkMacToViewerSecurityChallenge message that contains the NTLM challenge token.

  4. The client sends a LinkViewerToMacSecurityResponse message to the server that contains the response NTLM authentication token. If the credentials are correct, the server responds with a LinkMacToViewerReportOpenFile message. Otherwise, the server responds with a LinkMacToViewerSecurityChallenge message.

 
Show:
© 2015 Microsoft