1 Introduction

Microsoft provides support for NT LAN Manager (NTLM) (as specified in [MS-NLMP]) authentication in Microsoft Internet Explorer and Microsoft Internet Information Services (IIS) that uses the HTTP Protocol (for more information, see [RFC2616]) in addition to other standard authentication mechanisms. This provides the benefits of the NTLM Authentication Protocol for web applications when other authentication mechanisms (such as those specified in [RFC4559] and [RFC2617]) are not available.

Support for NTLM authentication is as specified in [RFC4559], using native NTLM Authentication Protocol (as specified in [MS-NLMP]) data units instead of encoded tokens (as specified in [RFC4178]). The tokens are still transmitted using base64 encoding. This document calls out the differences in the Microsoft implementation from what is specified in [RFC4559], where applicable.

Sections 1.5, 1.8, 1.9, 2, and 3 of this specification are normative. All other sections and examples in this specification are informative.