NTLM Authentication & LAPI

Richard_Ma_(mtrcadmin_-_(deleted))

I am writing a little VB Program to connect Livelink. However, I still can't use LL_SessionAllocEx() to locate a session since I don't know what to pass for the username and password. We are using Single signon and password is hidden. What is missing? Anybody can give me a hint?Thanks very much.

eLink User

Message from Bax Ruud, F.C. via eLinkWhen using single-logon there might be a problem !I don't believe a password is being sent; it's a sort of cryptographichandshake which ishard to encode (if not impossible) in a program.You could check www.asptoday.com; there are several articles regarding thisissue i.e.'The PitFalls Of IIS Security'.Kind regards,Ruud Bax - Oranjewoud> -----Oorspronkelijk bericht-----> Van: eLink Discussion: Development Discussion> [SMTP:development@elinkkc.opentext.com]> Verzonden: dinsdag 3 april 2001 3:29> Aan: eLink Recipient> Onderwerp: NTLM Authentication & LAPI> > NTLM Authentication & LAPI> Posted by MTRCAdmin on 04/02/2001 10:27 PM> > I am writing a little VB Program to connect Livelink. However, I still> can't use LL_SessionAllocEx() to locate a session since I don't know what> to pass for the username and password. We are using Single signon and> password is hidden. What is missing? Anybody can give me a hint?> > Thanks very much.> > [To reply to this thread, use your normal e-mail reply function.]> > ============================================================> > Discussion: Development Discussion> https://knowledge.opentext.com/knowledge/livelink.exe?func=ll&objId=786303> &objAction=view> > Livelink Server:> https://knowledge.opentext.com/knowledge/livelink.exe> > DISCLAIMERDit e-mail bericht is slechts bestemd voor de (rechts) persoon aan wie het is gericht, en kan informatie bevatten die persoonlijk of vertrouwelijk is. Deze informatie mag niet openbaar worden, tenzij hierom uitdrukkelijk in het e-mailbericht verzocht wordt, dan wel uitdrukkelijk door de verzender en ontvanger van het bericht overeengekomen is.Indien een ander dan de geadresseerde dit e-mail bericht ontvangt, anderszins in handen krijgt of redelijkerwijs kan vermoeden dat de in het bericht verzonden informatie niet voor hem of haar bestemd is, is hij of zij niet gerechtigd tot kennisneming, verspreiding, openbaar maken of vermenigvuldiging daarvan.Hij of zij wordt verzocht Ingenieursbureau ?Oranjewoud? B.V. onmiddellijk telefonisch op de hoogte te stellen en het e-mail bericht te vernietigen.Ingenieursbureau ?Oranjewoud? B.V. staat niet in voor de juiste, tijdige en volledige overbrenging van de inhoud van een verzonden e-mail bericht._______________________________________________________________________________________The information contained in this e-mail message is solely intended for the (legal) person to whom it has been sent. And as it may contain information of a personal or confidential nature, it may not be made public, unless this was specifically requested in the e-mail message, or specifically agreed upon by the sender and receiver of the e-mail message.If someone other than the intended recipient should receive or come into possession of this e-mail message, or can reasonably presume that the information contained in the e-mail message is not intended for him or her, he or she will not be entitled to read, disseminate, disclose or duplicate it. If you are not the intended recipient, you are requested to inform Ingenieursbureau ?Oranjewoud? B.V. immediately by telephone, and to destroy the original e-mail message.Ingenieursbureau ?Oranjewoud? B.V. does not accept any liability for the correct, timely and complete transmission of the contents of a transmitted e-mail message.