From 909f44d155f8149c387183a333ed1063d2d6b534 Mon Sep 17 00:00:00 2001
From: Sunggwan Choi <sxc2679@rit.edu>
Date: Tue, 3 Jan 2023 21:05:45 -0500
Subject: [PATCH] Fix ldap-checker module pth auth using NT hash

---
 cme/modules/ldap-checker.py | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/cme/modules/ldap-checker.py b/cme/modules/ldap-checker.py
index e741af79..487bdd6e 100644
--- a/cme/modules/ldap-checker.py
+++ b/cme/modules/ldap-checker.py
@@ -37,6 +37,9 @@ class CMEModule:
         
         inputUser = connection.domain + '\\' + connection.username
         inputPassword = connection.password
+        if connection.password == '' and connection.nthash is not None:
+            context.log.debug("Using NT(LM) hash for authentication")
+            inputPassword = "aad3b435b51404eeaad3b435b51404ee:" + connection.nthash
         dcTarget = connection.conn.getRemoteHost()
         
         #Conduct a bind to LDAPS and determine if channel