Bug 168 - Win2K 128bit encryption on schannel session keys
Summary: Win2K 128bit encryption on schannel session keys
Alias: None
Product: Samba 3.0
Classification: Unclassified
Component: Domain Control (show other bugs)
Version: 3.0.0preX
Hardware: All other
: P2 enhancement
Target Milestone: none
Assignee: Gerald (Jerry) Carter (dead mail address)
QA Contact:
Depends on:
Reported: 2003-06-14 23:37 UTC by John H Terpstra (mail address dead(
Modified: 2005-03-22 04:30 UTC (History)
1 user (show)

See Also:


Note You need to log in before you can comment on or make changes to this bug.
Description John H Terpstra (mail address dead( 2003-06-14 23:37:14 UTC
[00:33:37] <abartlet> also open one on win2000 session keys and 128 bit, so we
remember we don't support that
Comment 1 Andrew Bartlett 2003-09-06 08:21:33 UTC
Just a quick clarification - this is regarding schannel (netsec).  The current
(NT4 compatible) version might be too old at some point.  The new version
probably looks a lot like kerberos.
Comment 2 John H Terpstra (mail address dead( 2003-10-19 16:35:22 UTC
If this is still not supported I will add to the HOWTO docs.
Please let me know current status.

- John T.
Comment 3 Andrew Bartlett 2003-10-20 07:23:43 UTC
No change on this item, at this stage.  I think the 128-bit encryption might
actually just mean 'normal kerberos RPC auth', which we might get soon via
aligori and co, but that's just a guess.
Comment 4 Gerald (Jerry) Carter (dead mail address) 2005-02-07 08:43:04 UTC
didn't we fix this ?  (originally reported againt 3.0.0beta1)
Comment 5 Gerald (Jerry) Carter (dead mail address) 2005-03-22 04:10:46 UTC
closing as later since apparently this reported is orphaned.
Comment 6 Andrew Bartlett 2005-03-22 04:30:45 UTC
Samba4 knows how to do this, but I doubt it's worth trying to backport it, given
there is no apparent market demand for it.

Andrew Bartlett