3.2.5.14.12 Handling a Validate Negotiate Info Response

If the response is not signed or the signature verification in section 3.2.5.1.3 does not succeed, the client MUST terminate the Connection.

If the Status field of the SMB2 header of the response is STATUS_ACCESS_DENIED, the client MUST terminate the Connection.

If the Status field of the SMB2 header of the response indicates success, the client MUST verify the VALIDATE_NEGOTIATE_INFO response received in the Buffer field of the SMB2 IOCTL Response as follows:

  • Capabilities MUST be equal to Connection.ServerCapabilities.

  • Guid MUST be equal to Connection.ServerGuid.

  • SecurityMode MUST be equal to Connection.ServerSecurityMode.

  • Dialect MUST be equal to Connection.Dialect.

If any of the above verifications fails, the client MUST close all the sessions in Connection.SessionTable as specified in section 3.2.4.23 and MUST terminate the Connection.

Otherwise, the result is successful.

Show: