5 Jul
2006
5 Jul
'06
1:25 p.m.
Josh Howlett <josh.howlett@bristol.ac.uk> wrote:
Any idea how IAS gets hold of it for CHAP?
IAS is incestuous with the rest of the Microsoft world. But even IAS can't do CHAP unless the "use reversible encryption" is set in AD. Once that's set, IAS uses magic secret bloated RPC calls to connect to AD, and get the password. The Samba guys are working on reverse engineering the protocol, but they're not done yet. Alan DeKok.