After a security audit, you are instructed to harden a Samba member server so that only Kerberos tickets are accepted and every form of NTLM (including NTLMv2) is refused. Which single line added to the [global] section of smb.conf meets this requirement?
ntlm auth = ntlmv2-only
client NTLMv2 auth = yes
lanman auth = no
ntlm auth = disabled
The ntlm auth parameter controls whether the server will process NTLM password exchanges at all. Setting it to disabled turns off NTLMv1, NTLMv2, and LANMAN, forcing clients to use Kerberos or LDAP simple bind instead. Setting it to ntlmv2-only (or the alias no) still permits NTLMv2, client NTLMv2 auth affects only outbound client connections, and lanman auth = no blocks only the older LANMAN hashes. Therefore, the only directive that completely eliminates NTLM on the server side is ntlm auth = disabled.
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
All IT & Cybersecurity Package plans include the following perks and exams .
Our pricing is simple. Full access to all certifications and exams in each package, for one price.
As many practice tests for as many topics as you want.
Use study mode non-stop, no limits.
Access to our AI assistant, Bash, trained to help you pass your exam.
Track your scores over time in study mode and report cards.
See how you improve over time, and where you need to focus.
Access our store with even bigger discounts than before.
Unlimited access to all performance questions and be prepared for the real thing.
All IT & Cybersecurity Package plans include unlimited access to the following study materials.
Create an account or sign in to access our study materials.