Guys,
I have downloaded UltraVNC 19.5 and installed it on a NT box with SP6a. When I open the Admin Properties and select Configure MS Logon Groups, I get an error message that the system could not locate the ACLUI.DLL. When I try to connect to this NT box remotely, I get errors regarding AUTHSSP.DLL and SECUR32.DLL. Do you have any idea? Thanks in advance...
Stephen
Update: UltraVNC 1.4.3.6 and UltraVNC SC 1.4.3.6: https://forum.uvnc.com/viewtopic.php?t=37885
Important: Please update to latest version before to create a reply, a topic or an issue: https://forum.uvnc.com/viewtopic.php?t=37864
Join us on social networks and share our announcements:
- Website: https://uvnc.com/
- GitHub: https://github.com/ultravnc
- Mastodon: https://mastodon.social/@ultravnc
- Facebook: https://www.facebook.com/ultravnc1
- X/Twitter: https://x.com/ultravnc1
- Reddit community: https://www.reddit.com/r/ultravnc
- OpenHub: https://openhub.net/p/ultravnc
Important: Please update to latest version before to create a reply, a topic or an issue: https://forum.uvnc.com/viewtopic.php?t=37864
Join us on social networks and share our announcements:
- Website: https://uvnc.com/
- GitHub: https://github.com/ultravnc
- Mastodon: https://mastodon.social/@ultravnc
- Facebook: https://www.facebook.com/ultravnc1
- X/Twitter: https://x.com/ultravnc1
- Reddit community: https://www.reddit.com/r/ultravnc
- OpenHub: https://openhub.net/p/ultravnc
ACLUI.DLL
-
Guest
Stephen,
Regarding aclui.dll, you need to install the security configuration manager.
This is mentioned in the documentation.
AuthSSP.dll should be in the UltraVNC installation dir, this dll implements the MS-Logon II functionality.
Regarding Secur32.dll, I'm a little bit confused because on NT4 security.dll should be used.
I'll change the code to make sure the correct dll is activated.
Martin
Regarding aclui.dll, you need to install the security configuration manager.
This is mentioned in the documentation.
AuthSSP.dll should be in the UltraVNC installation dir, this dll implements the MS-Logon II functionality.
Regarding Secur32.dll, I'm a little bit confused because on NT4 security.dll should be used.
I'll change the code to make sure the correct dll is activated.
Martin
Phil,
The loading of security.dll/secur32.dll does not appear in winvnc.exe but in authSSP.dll.
Is implemented in http://gotovnc.dynalias.com/RC197/authSSP.dll
You should be able to authenticate on NT4. You can configure groups with the MSLogonACL tool.
If you want to configure groups in the UltraVNC Admin Properties page, you need the security configuration manager istalled in order to have the nice User Interface available.
What is the exact error message and what's not working?
Martin
The loading of security.dll/secur32.dll does not appear in winvnc.exe but in authSSP.dll.
Is implemented in http://gotovnc.dynalias.com/RC197/authSSP.dll
You should be able to authenticate on NT4. You can configure groups with the MSLogonACL tool.
If you want to configure groups in the UltraVNC Admin Properties page, you need the security configuration manager istalled in order to have the nice User Interface available.
What is the exact error message and what's not working?
Martin
. I always focused on the wrong spot...-
Rudi De Vos
- Admin & Developer
- Posts: 6863
- Joined: 2004-04-23 10:21
- Contact:
http://www.uvnc.com/RC197/12_02_2005
Contain latest cvs, including the new mslogon dll
Contain latest cvs, including the new mslogon dll
Same here, too.
I installed Windows NT4 in VMware 4.5.2, added SP6a, Internet Explorer 6 an Security Configuration Manager. My NT4 Workstation (German Language) is Member of an Windows NT4 Domain (all Domain Controllers are NT4 Server - English Language). I installed UltraVNC RC19.6 and added Rudi's RC19.7 build 2005-02-12.
The old mslogon is working (but authentication lasts about 10 seconds), when I use new MS logon I get "VNC authentication failed" without delay.
I tested with Domain Accounts - even one who only belongs to the groups "Domain Users" and "N15S_VNC_full" - and with the local Account "Administrator". I tried to give only the username or domain\username or username@domain. Nothing works.
mslogon.log shows "Invalid attempt (not authenticated) from client <IP> using <user> account."
I installed Windows NT4 in VMware 4.5.2, added SP6a, Internet Explorer 6 an Security Configuration Manager. My NT4 Workstation (German Language) is Member of an Windows NT4 Domain (all Domain Controllers are NT4 Server - English Language). I installed UltraVNC RC19.6 and added Rudi's RC19.7 build 2005-02-12.
The old mslogon is working (but authentication lasts about 10 seconds), when I use new MS logon I get "VNC authentication failed" without delay.
I tested with Domain Accounts - even one who only belongs to the groups "Domain Users" and "N15S_VNC_full" - and with the local Account "Administrator". I tried to give only the username or domain\username or username@domain. Nothing works.
mslogon.log shows "Invalid attempt (not authenticated) from client <IP> using <user> account."
I set up a NT4 box and could verify the problem.
With just the username I got "not authenticated", with domain\username I got "not authorized".
Finally found the bug and fixed it.
I uploaded the change to cvs.
I'll ask Rudi to update RC197 with a test dll with debug logging.
You need to specify "domain\user" or "machine\user".
Just the username will fail. UPNs fail also.
Please verify that this is working.
Then I could add code to prepend the machine name in case only the username is specified.
(Rename authSSP_NT4.dll to authSSP.dll and copy it to the UltraVNC install dir.
Logging goes to %WINNT%\system32\WinVNC-authSSP_NT.log and %WINNT%\system32\WinVNC-authSSP.log).
With just the username I got "not authenticated", with domain\username I got "not authorized".
Finally found the bug and fixed it.
I uploaded the change to cvs.
I'll ask Rudi to update RC197 with a test dll with debug logging.
You need to specify "domain\user" or "machine\user".
Just the username will fail. UPNs fail also.
Please verify that this is working.
Then I could add code to prepend the machine name in case only the username is specified.
(Rename authSSP_NT4.dll to authSSP.dll and copy it to the UltraVNC install dir.
Logging goes to %WINNT%\system32\WinVNC-authSSP_NT.log and %WINNT%\system32\WinVNC-authSSP.log).
-
Rudi De Vos
- Admin & Developer
- Posts: 6863
- Joined: 2004-04-23 10:21
- Contact:
That's it!
"domain\user" or "machine\user" is working for me with authSSP_NT4.dll.
It would be nice to assume first "machine\" if only username is specified, and as a second try if there is no local account "user" to assume "domain\". Maybe it's possible to use the registry-value "CachePrimaryDomain" in "HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon"...
Great Work! Keep on movin'
"domain\user" or "machine\user" is working for me with authSSP_NT4.dll.
It would be nice to assume first "machine\" if only username is specified, and as a second try if there is no local account "user" to assume "domain\". Maybe it's possible to use the registry-value "CachePrimaryDomain" in "HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon"...
Great Work! Keep on movin'
Works here too. I'll second the request for "Domain guessing" too. You do it somehow on Win 2000 and above, and the old MSLogon works without a domain prefix. Having to put a domain prefix in to connect to an NT4 box is going to confuse the hell out of people.hhetzel wrote:That's it!
"domain\user" or "machine\user" is working for me with authSSP_NT4.dll.
It would be nice to assume first "machine" if only username is specified, and as a second try if there is no local account "user" to assume "domain". Maybe it's possible to use the registry-value "CachePrimaryDomain" in "HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon"...
Great Work! Keep on movin'