Does Rx Support NTLM?

We are trying to do a Single Sign On from another application and were wondering if Rx has the capability for using NTLM?


If Rx does have NTLM authentication, how would I go about enabling it? And would it be able to work in addition to whatever current authentication we have set up?


No, Rhythmyx has no native NTLM support. It only interacts with Active Directory via LDAP.

I see.

We are trying to do Single Sign-on from another web application. Do you have any suggestions?

We tried doing a JBoss SSO but it won’t work in our prod environment because the applications are on different JBoss servers.


If you are going to authenticate against AD this java code might be helpful in getting things setup:

package test;

import java.util.Hashtable;
import javax.naming.ldap.;
import javax.naming.*;

public class searchdigest

public static void check(String filter)
System.out.println(“Ldap Filter:” + filter);
Hashtable env = new Hashtable();

	//Must use either the userPrincipalName or samAccountName,
	//Cannot use the distinguished name

	//String adminName = "";
	String adminPassword = "***";
	String ldapURL = "ldap://";

	//set security credentials, note using DIGEST-MD5
	//Requires user account to be stored with reversible encryption

	//Could also use DIGEST-MD5 to protect the communications
	//Eg. auth-int;integrity, auth-conf;confidentiality
	//And could also request the level of crypto
	//Eg. low, medium, high
	//connect to my domain controller

	try {

		// Create the initial directory context
		DirContext ctx = new InitialLdapContext(env,null);
		// Create the search controls 		
		SearchControls searchCtls = new SearchControls();
		//Specify the attributes to return
		String returnedAtts[]={"sn","givenName"};
		//Specify the search scope

		//specify the LDAP search filter
		String searchFilter = filter;

		//Specify the Base for the search
		String searchBase = "OU=Accounts,DC=school,DC=edu";

		//initialize counter to total the results
		int totalResults = 0;

		// Search for objects using the filter
		NamingEnumeration answer =, searchFilter, searchCtls);

		//Loop through the search results
		while (answer.hasMoreElements()) {
			SearchResult sr = (SearchResult);
			System.out.println(">>>" + sr.getName());

			// Print out some of the attributes, catch the exception if the attributes have no values
			Attributes attrs = sr.getAttributes();
			if (attrs != null) {
				try {
					System.out.println("   mail: " + attrs.get("mail").get());
				catch (NullPointerException e)	{


		System.out.println("Total results: " + totalResults);


	catch (NamingException e) {
			System.err.println("Problem searching directory: " + e);


public static void main (String[] args)

String filter = "mail=a*";




If you get the code above to work after changing to ad server and connection parameters then you are talking to your AD server.

Next thing to do is to authenticate against it.
Here are some links on the subject matter:

To test your binding parameters this Novell library mentioned here is useful:

Once you have the above working, the next step is to get a trace on on port 389 with something like wireshark .

Then you can tell if you ldap cms parameters being sent match you test code developed with using the Novell libraries.


thanks for the post. I’ll pass it on to our SEs who are working on getting this set up.