HttpComponents HttpClient
  1. HttpComponents HttpClient
  2. HTTPCLIENT-1315

NTLM or digest authentication using a local user on a domain host doesn't work



      The default AuthScheme cannot authenticate local users if the host is included in a domain. Authetication with domain users or local users if the host is in a workgroup works fine.

      If using ntlm or digest authentication:

      • Authentication with a domain user works fine
      • Authentication with a local user if the host is in a workgroup works fine
      • Authentication with a local user (e.g. Administrator) if the host is in a domain returns 401 - Unauthorized. (Note: this works with JCIFS implementation)

      To reproduce:

      //using local user returns "401 - Unauthorized" if the host is part of a domain
      NTCredentials creds = new NTCredentials("Administrator", "password", "myworkstation", "HOSTNAME");
      //domain user works fine:
      //NTCredentials creds = new NTCredentials("USERNAME", "password", "myworkstation", "DOMAIN");

      DefaultHttpClient httpclient = new DefaultHttpClient();
      httpclient.getCredentialsProvider().setCredentials(AuthScope.ANY, creds);
      HttpHost target = new HttpHost("xx.xx.xx.xx", 81, "http");
      HttpContext localContext = new BasicHttpContext();
      HttpGet httpget = new HttpGet("/Orchestrator2012/Orchestrator.svc/Jobs");
      List<String> authpref = new ArrayList<String>();
      httpclient.getParams().setParameter(AuthPNames.TARGET_AUTH_PREF, authpref);
      HttpResponse response1 = httpclient.execute(target, httpget, localContext);
      HttpEntity entity1 = response1.getEntity();

      The code works if I use jcifs-1.3.17 to create an NTLMEngine like in the example:

      1. zero_lm.patch
        0.8 kB
        Karl Wright
      2. disable_flags.patch
        0.8 kB
        Karl Wright
      3. browser login with local user.txt
        4 kB
        Mihai David
      4. httpclient login with local user.txt
        18 kB
        Mihai David
      5. digestlog.txt
        14 kB
        Mihai David


        No work has yet been logged on this issue.


          • Assignee:
            Karl Wright
            Mihai David
          • Votes:
            0 Vote for this issue
            3 Start watching this issue


            • Created: