Welcome!

Welcome to the official BlackBerry Support Community Forums.

This is your resource to discuss support topics with your peers, and learn from each other.

Reply
Highlighted
Developer
Posts: 174
Registered: ‎08-20-2008
My Device: Not Specified

Password length limit

Hi All,

 

Is there a password length limit on NTLM authentication from a device? I seem to be getting 401s when users have a AD password around 15 characters and longer. Have tested and verified this myself.

Forums Veteran I
Posts: 2,036
Registered: ‎12-04-2008
My Device: 8900

Re: Password length limit

I'm not sure if there is a limit, but I could have sworn I've seen the passwords be longer then 15 charecters in my limited use.I asked around and seems to be thought it didn't, let me look around more though.

 

incase anyone was wondering what NTLM is

 

http://en.wikipedia.org/wiki/NTLM

******************************************************************


If someone helped you give them kudos. Research all info!
Contributor
Posts: 18
Registered: ‎06-29-2009
My Device: Not Specified

Re: Password length limit

BeMor, did you ever get an answer to this or manage to fix the issue?
We are finding the same limitation with password lengths.
Would also be interested to know what proxies you are using.
Forums Veteran II
Posts: 2,744
Registered: ‎04-01-2008
My Device: Bold

Re: Password length limit

It is a hard limit; I had the problem too.  Keep it under the limit.
------------------------------
If you've found a solution through a post; please mark it as a solution.
If someone's was particularly helpful, give them kudo's!.


Get busy living, or get busy dying.

http://blog.port3101.org/hdawg/
Contributor
Posts: 18
Registered: ‎06-29-2009
My Device: Not Specified

Re: Password length limit

A hard limit set by what?

 

To use HTTP Authentication, the users have to enter their Domain Credentials. Having to limit the password length to 14 characters would mean changing out entire domain password policy.

Forums Veteran II
Posts: 2,744
Registered: ‎04-01-2008
My Device: Bold

Re: Password length limit

its a hard limit supported by mds.
------------------------------
If you've found a solution through a post; please mark it as a solution.
If someone's was particularly helpful, give them kudo's!.


Get busy living, or get busy dying.

http://blog.port3101.org/hdawg/
Contributor
Posts: 18
Registered: ‎06-29-2009
My Device: Not Specified

Re: Password length limit

Thanks AndyDufresne.
Contributor
Posts: 18
Registered: ‎06-29-2009
My Device: Not Specified

Re: Password length limit

AndyDufresne, one more thing. Don't suppose you could point us to where this limit is documented?

 

Thanks

Forums Veteran II
Posts: 2,744
Registered: ‎04-01-2008
My Device: Bold

Re: Password length limit

Sorry, I was actually incorrect. The 14 character limit is for lanman passwords, and Windows will not generate the lanman hash if the password length is over 14  characters.  The max password length for the actual NTLM hash is 255 ...

 

http://support.microsoft.com/kb/299656

------------------------------
If you've found a solution through a post; please mark it as a solution.
If someone's was particularly helpful, give them kudo's!.


Get busy living, or get busy dying.

http://blog.port3101.org/hdawg/