NTLM Component
Properties Methods Events Configuration Settings Errors
The NTLM component provides a simple API to create the required tokens for NTLM authentication.
Syntax
TipaNTLM
Remarks
This component provides a simple API to create the required tokens for NTLM authentication.
The NTLM authentication process is a challenge-response scheme which consists of three messages. These three messages are the negotiation, challenge, and authentication. This component implements only the client side of NTLM and will create the negotiation and authentication tokens. The component does not transmit any data, it simply prepares the tokens for use in other transport protocols such as HTTP. The following steps describe how the component is used.
Create the Negotiate Token
To begin first set User and Password. The user value may contain domain information in the format "DOMAIN\User" or "user@domain".
Next call CreateNegotiateToken to populate NegotiateToken. This token may then be transmitted separately. For instance in HTTP
this would be sent in a request within the Authorization header:
HTTPHeader = "Authorization: NTLM " + NegotiateToken
Create the Auth Token
After sending the negotiate token over the chosen transport protocol,
the server will respond with a challenge token. Set ChallengeToken to the
token received from the server. For instance, in HTTP the server will respond with the challenge token in the WWW-Authenticate header:
WWW-Authenticate: NTLM <ChallengeToken>After setting User, Password, and ChallengeToken call CreateAuthToken. This will populate AuthToken with the created token. This token may then be transmitted separately. For instance in HTTP this would be sent in the request within the Authorization header:
HTTPHeader = "Authorization: NTLM " + AuthToken
Note: If the server requires EPA (Extended Protection for Authentication), then SSLServerCert must be set to the server's public certificate before calling CreateAuthToken.
Property List
The following is the full list of the properties of the component with short descriptions. Click on the links for further details.
AuthToken | The authentication token. |
ChallengeToken | The challenge token. |
NegotiateToken | The negotiate token. |
NTLMVersion | The NTLM version. |
Password | The user's password. |
SSLServerCertEncoded | The certificate (PEM/base64 encoded). |
SSLServerCertStore | The name of the certificate store for the client certificate. |
SSLServerCertStorePassword | If the certificate store is of a type that requires a password, this property is used to specify that password in order to open the certificate store. |
SSLServerCertStoreType | The type of certificate store for this certificate. |
SSLServerCertSubject | The subject of the certificate used for client authentication. |
User | The user. |
Method List
The following is the full list of the methods of the component with short descriptions. Click on the links for further details.
Config | Sets or retrieves a configuration setting . |
CreateAuthToken | Creates the authentication token. |
CreateNegotiateToken | Creates the negotiate token. |
Reset | Resets the component. |
Event List
The following is the full list of the events fired by the component with short descriptions. Click on the links for further details.
Error | Information about errors during data delivery. |
Configuration Settings
The following is a list of configuration settings for the component with short descriptions. Click on the links for further details.
UsePlatformNTLMAPI | Whether to use the platform NTLM API. |
EncodeToken | Whether to Base64 encode the token. |
DecodeToken | Whether to Base64 encode the token. |
Workstation | The workstation name. |
CodePage | The system code page used for Unicode to Multibyte translations. |