Hi Everyone!
I tried to scan some windows hosts with domain user. But openvas couldn’t log in. I thought that openvas authenticate on hosts with kerberos protocol, but I figure out that it only uses NTLM. (e.g. Windows Authenticated SMB scan using kerberos)
I used openvas from community containers.
Could anyone explaine how openvas perform authentication on windows hosts? What protocol does it use? Only NTLM?
Will be any support of Kerberos authentication? In openvas-smb source code openvas-smb/samba/auth/kerberos at main · greenbone/openvas-smb · GitHub there is Kerberos implementetion.
Have you read the documentation section 10.3.3.2 Configuring a Domain Account for Authenticated Scans? This outlines the security benefits of using a domain account to conduct authenticated scans and also clarifies that Kerberos is only available for authentication when using domain accounts.
@rippledj, thank you for your reply.
Yes, I’ve read it. And I have some question about account and kerberos settings.
- How should I write down account name? domain\accountName or accountName@domain?
- Where can I set settings for kerberos authentication? KDC name, KDC port, KDC transport and etc?
I 've got authentication logs. I’ve figure out that openvas uses only ntlm for authentication. Is there a way to force the openvas use only Kerberos?