05-13-2009 12:48 PM
Is there a password length limit on NTLM authentication from a device? I seem to be getting 401s when users have a AD password around 15 characters and longer. Have tested and verified this myself.
05-13-2009 01:20 PM
I'm not sure if there is a limit, but I could have sworn I've seen the passwords be longer then 15 charecters in my limited use.I asked around and seems to be thought it didn't, let me look around more though.
incase anyone was wondering what NTLM is
06-29-2009 11:33 AM
06-29-2009 12:38 PM
06-30-2009 04:36 AM
A hard limit set by what?
To use HTTP Authentication, the users have to enter their Domain Credentials. Having to limit the password length to 14 characters would mean changing out entire domain password policy.
06-30-2009 09:37 AM
07-07-2009 01:32 AM
Sorry, I was actually incorrect. The 14 character limit is for lanman passwords, and Windows will not generate the lanman hash if the password length is over 14 characters. The max password length for the actual NTLM hash is 255 ...