NTLMSSP

From Wikipedia, the free encyclopedia
Jump to: navigation, search

NTLMSSP (NT LAN Manager Security Support Provider) is a binary messaging protocol used by the Microsoft Security Support Provider Interface (SSPI) to facilitate NTLM challenge-response authentication and to negotiate integrity and confidentiality options. NTLMSSP is used wherever SSPI authentication is used including, but not limited to, Server Message Block/CIFS extended security authentication, HTTP Negotiate authentication (e.g. IIS with IWA turned on) and MSRPC services.

The Windows Service offering the acceptor side of NTLMSSP has been removed from Windows Vista and Windows Server 2008 in favor of the newer Kerberos authentication protocol. [1]

The NTLMSSP and NTLM challenge-response protocol have been fairly well documented in Microsoft's Open Protocol Specification.[2]

See also[edit]

References[edit]

  1. ^ Deprecated components in Windows Vista
  2. ^ MS-NLMP - NT LAN MANAGER (NTLM) Authentication Protocol Specification