Hongwei,
> The SharedSecret used for AES session key computation, as described in
> 3.1.4.3 MS-NRPC , should be the NTOWF (MD4(UNICODE(Passwd))) of the plaintext
> password. The section 3.1.1 of MS-NRPC explains what a SharedSecret is used
> for session key calculation in Windows implemen
On Tue, 2009-08-25 at 07:17 -0700, Bill Wesse wrote:
> Thanks again for your input; my response interpolated below...
>
> >> Good morning Andrew - I have attached a pdf showing the changes that will
> >> be in the next update to [MS-NRPC] concerning section 2.2.1.3.6
> >> NETLOGON_WORKSTATION_IN
On Tue, 2009-08-25 at 07:04 -0700, Bill Wesse wrote:
> Good morning Andrew. Thanks for your feedback. I have interpolated available
> information below.
>
> >> Andrew - I think I might have missed a previous email of yours. If so, I
> >> offer my apologies.
> >>
> >> The actual Windows behavior
Metze,
The SharedSecret used for AES session key computation, as described in
3.1.4.3 MS-NRPC , should be the NTOWF (MD4(UNICODE(Passwd))) of the plaintext
password. The section 3.1.1 of MS-NRPC explains what a SharedSecret is used
for session key calculation in Windows implementations.
Hi sebastian,
That's better but it is written:
"ExpansionRoom: If NTLMV1 is used, the first 8 bytes represent the LMOWF
as specified in [MS-NLMP] section 3.3.1. If NTLMV2, the first 8 bytes
are set to the KXKEY ([MS-NLMP] section 3.4.5.1). This MAY be set to
zero.<27>"
Could it be just a bi
Metze,
Thanks for your question. I will be working on this request. I will let
you know as soon as I complete the investigation.
Thanks!
Hongwei Sun - Sr. Support Escalation Engineer
DSC Protocol Team, Microsoft
hongw..
Hi,
I'm currently trying to implement the AES based Netlogon Secure Channel
in Samba.
But the documentation is not really clear about the used algorithms.
I have started with the implementation here:
http://gitweb.samba.org/?p=metze/samba/wip.git;a=shortlog;h=refs/heads/master4-schannel
And her
Thanks again for your input; my response interpolated below...
>> Good morning Andrew - I have attached a pdf showing the changes that will be
>> in the next update to [MS-NRPC] concerning section 2.2.1.3.6
>> NETLOGON_WORKSTATION_INFO OsVersion field description.
>>
>> These changes will refer
Good morning Andrew. Thanks for your feedback. I have interpolated available
information below.
>> Andrew - I think I might have missed a previous email of yours. If so, I
>> offer my apologies.
>>
>> The actual Windows behavior is - as Matthias noted previously - that
>> NetrLogonGetDomainInf