Andrew Bartlett
2017-Aug-08 10:17 UTC
[Samba] Best method to do MsChapv2 against AD is SMB-RPC or TCP-RPC
On Wed, 2017-07-19 at 19:51 +0530, Paul Simon via samba wrote:> Hi, > > I am working on a decade older project, wherein I see that for MschapV2 > authentication, NetrLogonSamLogon rpc message and its preceding rpc > messages like Bind, NetrServerReqChallenge, NetrServerAuthenticate2 are > sent over SMB. > > But when I see samba, the above mentioned RPCs are sent directly over TCP. > > I am a bit confused here. Which is the best method to go ahead. > I understand this question is not about samba, but a bit of help from > experts will be really valuable.Either will work fine. Use whichever is easiest for you to code and access. Andrew Bartlett -- Andrew Bartlett http://samba.org/~abartlet/ Authentication Developer, Samba Team http://samba.org Samba Developer, Catalyst IT http://catalyst.net.nz/services/samba
Paul Simon
2017-Aug-08 12:19 UTC
[Samba] Best method to do MsChapv2 against AD is SMB-RPC or TCP-RPC
Thank you. On Tue, Aug 8, 2017 at 3:47 PM, Andrew Bartlett <abartlet at samba.org> wrote:> On Wed, 2017-07-19 at 19:51 +0530, Paul Simon via samba wrote: > > Hi, > > > > I am working on a decade older project, wherein I see that for MschapV2 > > authentication, NetrLogonSamLogon rpc message and its preceding rpc > > messages like Bind, NetrServerReqChallenge, NetrServerAuthenticate2 are > > sent over SMB. > > > > But when I see samba, the above mentioned RPCs are sent directly over > TCP. > > > > I am a bit confused here. Which is the best method to go ahead. > > I understand this question is not about samba, but a bit of help from > > experts will be really valuable. > > Either will work fine. Use whichever is easiest for you to code and > access. > > Andrew Bartlett > -- > Andrew Bartlett http://samba.org/~abartlet/ > Authentication Developer, Samba Team http://samba.org > Samba Developer, Catalyst IT http://catalyst.net.nz/ > services/samba > >