directory-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Hammond, Steven" <>
Subject RE: Passthrough authentication with Apache Directory Server
Date Wed, 17 Nov 2010 20:03:35 GMT
I cannot contribute the code, but I can describe the basic use

When initializing the ApacheDS server, which we did in code, not in a config file:
      NtlmMechanismHandler ntlmMechanismHandler = new NtlmMechanismHandler();
      ntlmMechanismHandler.setNtlmProvider(new JcifsNtlmProvider());

      ldapServer.addSaslMechanismHandler(SupportedSaslMechanisms.NTLM, ntlmMechanismHandler);
      ldapServer.addSaslMechanismHandler(SupportedSaslMechanisms.GSS_SPNEGO, ntlmMechanismHandler);

Then in generateChallenge we created a Type2Message message from the type1 bytes using JCIFS
Getting the serverNonce from code like!/com/liferay/portal/security/ntlm/

Then authenticate uses code similar the logon function in!/com/liferay/portal/security/ntlm/

-----Original Message-----
From: Antoine Levy-Lambert [] 
Sent: Friday, November 12, 2010 6:17 AM
Subject: Re: Passthrough authentication with Apache Directory Server


I would also be interested to see (and reuse) this code.



On 11/12/2010 4:44 AM, Kiran Ayyagari wrote:
> hi Steven,
> On Fri, Nov 12, 2010 at 10:24 AM, Hammond, Steven
> <>  wrote:
>> It is kindof implemented.  We are using it with 1.5.3, but we had to write our own
> Is there any chance that you (with your organization) would consider
> to contribute this code to ApacheDS?
> Kiran Ayyagari

View raw message