This parameter has been deprecated since Samba 4.13 and support for NTLMv2 authentication without NTLMSSP will be removed in a future Samba release. That is, in the future, the current default of raw NTLMv2 auth = no will be the enforced behaviour. This parameter determines whether or not smbd 8 will allow SMB1 clients without extended security (without SPNEGO) to use NTLMv2 authentication. If this option, lanman auth and ntlm auth are all disabled, then only clients with SPNEGO support will be permitted. That means NTLMv2 is only supported within NTLMSSP. lanman auth ntlm auth no