Does WAFFLE support NTLM v2?

Nov 11, 2010 at 11:01 PM

I am required to update the authentication module in a web application (currently using JCIFS 1.3.0) to support NTLM v2

I would like to know;

1) Does WAFFLE supports NTLM v2?

2) Does it use NetrLogonSamLogon DCERPC call for NTLM validation?

Thanks in advance 

Nov 12, 2010 at 12:10 AM

Yes, Waffle supports NTLMv2. Waffle is using Microsoft SSPI, so whatever Windows supports, Waffle supports. With Waffle you can do everything you can do in IIS on a Java-based web server.

The short answer is no. Waffle calls InitializeSecurityContext and AcceptSecurityContext, generic APIs that live on the very top of SSPI. It's possible that the SSP implementation underneath needs to use Netlogon to do its job, so it's very possible that NetrLogonSamLogon is invoked somewhere by a Microsoft SSP. You'll have to walk to building 41 in Redmond to find someone who really knows the answer :)

Nov 12, 2010 at 12:13 AM

One more thing. To be clear, Waffle is windows-only. As long as you run on Windows you can accomplish what you want, ie. replace JCIFS.

Nov 12, 2010 at 12:24 AM

Thanks for the speedy answer. An alternative to JCIFS is what I am looking for :D