EAV Moinitor fails with NTLMv2
Hi Guys,
I am looking at an EAV monitor that uses curl with ntlm authentication to probe an II6 server , worked fine for ages but now that the AD group sec policy has enforced ntlmv2 for Integrated Authentication the monitor fails with a 500 error:
GET /nna/?orig_uri=/xxxx/secure/xxxxxx/homepage/intranetheartbeat HTTP/1.1
Authorization: NTLM TlRMTVNTUAABAAAAAgIAAAAAAAAgAAAAAAAAACAAAAA=
User-Agent: curl/7.10.6 (i686-redhat-linux-gnu) libcurl/7.10.6 OpenSSL/0.9.7l ipv6 zlib/1.1.4
Pragma: no-cache
Accept: image/gif, image/x-xbitmap, image/jpeg, image/pjpeg, */*
Host: www.xxxxx.xxx.xxx
HTTP/1.1 500 Internal Server Error
Content-Length: 100
Content-Type: text/html
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Mon, 30 Jan 2012 09:44:05 GMT
Connection: close
ErrorThe function requested is not supported
I have checked the IIS6 servers and the key below confirms that the servers are now using NTLMv2 and 128-bit encryption
(HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa\MSV1_0\NTLMMinServerSec = 0x20080030)
I am pretty sure that the monitor is failing because libcurl that ships with 9.3.1 doesn't support ntlmv2, but as far as i know neither do the latest version of libcurl ?!?
So my questions is: How do you do write an EAV monitor that supports ntlmv2 in 9.3.1 and/or any other version? Is EAV the right way to go about it or is there another/better way to do it?
Thoughts appreciated.
Thanks.
Claud