docs-xml/smbdotconf/security/rawntlmv2auth.xml


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27

<samba:parameter name="raw NTLMv2 auth"
                 context="G"
                 type="boolean"
		 deprecated="1"
                 xmlns:samba="http://www.samba.org/samba/DTD/samba-doc">
<description>
    <para>This parameter has been deprecated since Samba 4.13 and
    support for NTLMv2 authentication without NTLMSSP will be removed
    in a future Samba release.</para>
    <para>That is, in the future, the current default of
    <command>raw NTLMv2 auth = no</command>
    will be the enforced behaviour.</para>

    <para>This parameter determines whether or not <citerefentry><refentrytitle>smbd</refentrytitle>
    <manvolnum>8</manvolnum></citerefentry> will allow SMB1 clients without
    extended security (without SPNEGO) to use NTLMv2 authentication.</para>

    <para>If this option, <command moreinfo="none">lanman auth</command>
    and <command moreinfo="none">ntlm auth</command> are all disabled,
    then only clients with SPNEGO support will be permitted.
    That means NTLMv2 is only supported within NTLMSSP.</para>
</description>

<related>lanman auth</related>
<related>ntlm auth</related>
<value type="default">no</value>
</samba:parameter>