What is NTLM certification? What is NTLM Certification?

SAA certification is Australia's standards body for the Standards Association of Australian certification, so many friends call it Australian certification. Electrical products entering the Australian market must comply with SAA certification. There are two main types of SAA marks, one is formal recognition and the other is standard mark.

The form certification is only responsible for the sample, while the standard mark is subject to each factory audit. The scope of SAA certification is mainly divided into quality management system; environmental management system; occupational health and safety management; information security management; The cycle for applying for Australian SAA certification for common products is 3-4 weeks, and if the product quality is not up to standard, the date may be extended. If the product shipped is not certified, the product will be withheld or confiscated or fined.

Australia is a Commonwealth country, and the certification, control and management of electrical safety and energy consumption requirements are carried out by the regulatory authority of each state or territory in accordance with the certification procedures of the state or territory. Certificates issued in any one state are also valid in other states and territories without any additional formalities. In addition, QAS (Quality Assurance Services Pty Ltd.), a wholly owned subsidiary of the SAA standards development agency

It is Australia's NCB (National Certification Body), and the certificates issued by it are also recognized by various states or territories and have the same validity.

A way to authenticate the identity of TelNet in Win2000, i.e., Windows NT LAN Manager (NTLM).

ntlm

The default setting (NTLM protocol) is based on a question-and-answer mechanism for client authentication. NTLM is the abbreviation of NT LAN Manager, which also explains the protocol. NTLM was the standard security protocol for earlier versions of Windows NT, and Windows 2000 supported NTLM to maintain backward compatibility.

Windows 2000 has one of the three basic security protocols built in.

The NTLM workflow looks like this:

1. The client first encrypts the current user's password locally and becomes a password hash.

2. The client sends its own account number to the server, which is not encrypted and transmitted directly in plaintext.

3. The server generates a 16-bit random number and sends it to the client as a challenge

4. The client then encrypts the challenge with the encrypted password hash, and then returns this to the server. as a response

5. The server sends the user name, the challenge to the client, and the response returned by the client to the domain controller.

6. The domain controller uses this username to find the user's password hash in the SAM password management library, and then uses the password hash to encrypt the challenge.

7. The domain controller compares the two encryption challenges, and if they are the same, then the authentication is successful.

As we can see from the above process, NTLM is sending a login request to the telnet server as the current user, not with your own account and password, obviously, your login will fail. For example, if your machine name is A (local machine), the machine you log in to is called B (remote machine), your account on A is ABC, the password is 1234, your account number on B is XYZ, the password is 5678, when you want to telnet to B, NTLM will automatically use the current user's account and password as the login credentials to perform the above 7 operations, that is, use abc and 1234, instead of You need to log in to account xyz and 5678, And it's all done automatically, giving you no chance to do it at all, so your login will fail.

The NTLM authentication option has three values. The default is 2. You can have the following values:

0: NTLM authentication is not used.

1: Try NTLM authentication first, and if that fails, use the username and password.

2: Use only NTLM authentication.

NTLM is available in SharePoint products and technologies to communicate with systems that can only be authenticated using NTLM.

NTLM is the abbreviation of NT LAN Manager, which also explains the protocol. NTLM was the standard security protocol for earlier versions of Windows NT, and Windows 2000 supported NTLM to maintain backward compatibility. Windows 2000 has one of the three basic security protocols built in.

A way to authenticate the identity of TelNet in Win2000, i.e., Windows NT LAN Manager (NTLM).

The Manager (NTLM) protocol is the only network authentication protocol. Windows 2000 augmented it to some extent. It uses the industry-standard Kerberosv5 protocol as the default authentication protocol.

Write NTLM comparatively. Kerberos has many advantages, such as its ability to authenticate both the client and the server.

1.Direct use to modify the NTLM authentication method when the telnet service is enabled. (You must have the admin account password and the server to open the IPC sharing service).

2.Use the streamer grower to run the program remotely and modify the NTLM authentication method. (Must have the admin account password and the server's support for IPC sharing services).

3.You can also use the echo command to write a script that includes interactive control commands, and use dos to redirect it, that is, execute the c: winnt system32 script name to change the ntlm authentication method. (Must have a shell or backdoor with sufficient permissions).

4.Then use EVA's WSH script to remotely open Telnet and modify the NTLM authentication method. (You must have the admin account password and the server to open the WMI service).

5.Finally, on the client side, use the username and password of admin on the server side, open cmd, and then go to telnet. (You must have the admin account password and a shell or backdoor with sufficient permissions).

NTLMV2 adds encryption algorithms to NTLM. You need to add a digital certificate to IIS, and NTLMV2 single sign-on authentication is supported only in Windows 2003 and later versions.

Login authentication must be done through IIS.