1 <samba:parameter name="client ntlmv2 auth"
3 advanced="1" developer="1"
4 xmlns:samba="http://samba.org/common">
6 <para>This parameter determines whether or not <citerefentry><refentrytitle>smbclient</refentrytitle>
7 <manvolnum>8</manvolnum></citerefentry> will attempt to
8 authenticate itself to servers using the NTLMv2 encrypted password
11 <para>If enabled, only an NTLMv2 and LMv2 response (both much more
12 secure than earlier versions) will be sent. Many servers
13 (including NT4 < SP4, Win9x and Samba 2.2) are not compatible with
16 <para>Similarly, if enabled, NTLMv1, <command
17 moreinfo="none">client lanman auth</command> and <command
18 moreinfo="none">client plaintext auth</command>
19 authentication will be disabled. This also disables share-level
20 authentication. </para>
22 <para>If disabled, an NTLM response (and possibly a LANMAN response)
23 will be sent by the client, depending on the value of <command
24 moreinfo="none">client lanman auth</command>. </para>
26 <para>Note that some sites (particularly
27 those following 'best practice' security polices) only allow NTLMv2
28 responses, and not the weaker LM or NTLM.</para>
30 <para>Default : <command moreinfo="none">client ntlmv2 auth = no</command></para>