Xamarin
A Microsoft open-source app platform for building Android and iOS apps with .NET and C#.
5,291 questions
How to do NTLMv2 auth when consuming web service in Xamarin.Android client?
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(16, 10%, 11%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDG%3C/text%3E%3C/svg%3E)
Douglas G. Henke
0
Reputation points
We have a legacy app built with Xamarin.Android that uses HttpWebRequest to consume a web service. We're authenticating with NTLM (not v2) by setting the HttpWebRequest.Credentials property to an appropriate NetworkCredential object.
The customer has observed that it is now 2023 and, therefore, NTLM is not a particularly optimal choice in terms of security. They wish now instead to use NTLMv2. HttpWebRequest seems to not support NTLMv2. (There's no way I can find to specify the auth version on the client side, and it does not successfully negotiate it with the server.)
What's the least-painful path to NTLMv2 support in a Xamarin.Android app?
(For those of you with your fingers poised above the "just use OAuth2" key: That's being considered. But for the purposes of this question, please assume we're stuck with NTLMv2.)
Thanks!
{count} votes
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(310.4, 6%, 40%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ELL%3C/text%3E%3C/svg%3E)
Leon Lu (Shanghai Wicresoft Co,.Ltd.) 68,016 Reputation points Microsoft Vendor2023-03-29T08:59:28.0333333+00:00 I find a similar issue([Mono.Android] NTLM support in AndroidMessageHandler) in the Xamarin.Android Github page. NTLMv2 do not support it in xamarin.android. V2 will return 401 error.
Sign in to comment