Reputation: 11791
NTLM Authentication in Asp.net
After reading this article. I have some questions about NTLM Authentication.
When I apply NTLM in a asp.net web site
- Does the challenge/response process happened between Web Browser and IIS?
- Where are the credentials stored in the client after succeeding to authenticate? Because after that, I don't need to input user and password anymore. So I think the stored credentials must be passed to server to be authenticated in some ways.
- Can I just use the available credentials for SSO? If I can, How to make it ?
Upvotes: 1
Views: 396
Answers (1)
Reputation: 78813
Yes, IIS sends a challenge to the client, your Web Browser will compute a response based on the challenge.
This is up to the browser. It should cache the credentials you provide in-memory so that it can response to future challenges.
This is also up to the browser. Some browsers on Windows use the
InitializeSecurityContextfunction to perform NTLM / SPNEGO authentication. In this case, single sign-on should be available if you have a trust relationship with the remote machine or you have "shadow accounts" setup (such that you have the same username/password on the local and remote machines.) Some browsers, however, use their own NTLM libraries instead of going to the system authentication mechanisms, for example Firefox. In this case, single sign-on is not available.
Upvotes: 2
Related Questions
- Credentials cannot be used for NTLM authentication
- How to provide ntlm authentication while calling any url?
- Using NTLM authentication in Java applications
- How to authenticate a windows user in java web service?
- NTLM Authentication with Active Directory using Java
- NTLM Authentication in a Web Application (java)
- NTLM SSO implementation in Java
- how to implement a web service client which connects to an external web service with authentication based on NTLM Authentication
- IIS WCF Service Accesed via JAVA with NTLM Authentication
- NTLM Window Authentication