assertFalse(fessUserBean.hasGroups(new String[] { "managers", "guests" }));

        // Test with multiple groups
        testUser.setGroupNames(new String[] { "developers", "testers", "managers" });
        assertTrue(fessUserBean.hasGroups(new String[] { "developers" }));
        assertTrue(fessUserBean.hasGroups(new String[] { "testers", "guests" }));

        assertFalse(auth1.isGuest());
        assertFalse(auth1.isAnonymous());

        // Test guest type with char array
        char[] guestPassword = "GuestPass123!".toCharArray();
        NtlmPasswordAuthenticator auth2 =
                new NtlmPasswordAuthenticator("DOMAIN", "guest", guestPassword, NtlmPasswordAuthenticator.AuthenticationType.GUEST);

        assertTrue(auth2.isGuest());
        assertFalse(auth2.isAnonymous());

import jcifs.util.SecureKeyManager;
import jcifs.util.Strings;

/**
 * This class stores and encrypts NTLM user credentials.
 *
 * Contrary to {@link NtlmPasswordAuthentication} this does not cause guest authentication
 * when the "guest" username is supplied. Use {@link AuthenticationType} instead.
 *
 * @author mbechler
 */
public class NtlmPasswordAuthenticator implements Principal, CredentialsInternal, Serializable, AutoCloseable {

     *
     * @return password used when guest authentication is requested
     */
    String getGuestPassword();

    /**
     * Property {@code jcifs.smb.client.guestUsername}, defaults to GUEST
     *
     * @return username used when guest authentication is requested
     */
    String getGuestUsername();

    /**

 * scattered authentication implementations.
 */
public interface AuthenticationProvider {

    /**
     * Authentication type enumeration
     */
    enum AuthType {
        NTLM, KERBEROS, SPNEGO, GUEST, ANONYMOUS
    }

    /**
     * Gets the authentication type
     *
     * @return the authentication type
     */
    AuthType getAuthType();

    /**
     * Authenticates using the provided context

        super(userInfo, tc.getConfig().getDefaultDomain(),
                tc.getConfig().getDefaultUsername() != null ? tc.getConfig().getDefaultUsername() : "GUEST",
                tc.getConfig().getDefaultPassword() != null ? tc.getConfig().getDefaultPassword() : "");
        this.context = tc;
    }

    /**
     * Create an {@code NtlmPasswordAuthentication} object from a

     */
    @Override
    public CIFSContext withGuestCrendentials() {
        return withCredentials(new NtlmPasswordAuthenticator(null, null, (String) null, AuthenticationType.GUEST));
    }

    /**
     * {@inheritDoc}
     *
     * @see jcifs.CIFSContext#getCredentials()
     */
    @Override
    public Credentials getCredentials() {
        return getDefaultCredentials();
    }

# Connection settings
jcifs.smb.client.connTimeout=35000
jcifs.smb.client.soTimeout=180000
jcifs.smb.client.responseTimeout=30000

# Authentication
jcifs.smb.client.domain=WORKGROUP
jcifs.smb.client.username=guest
jcifs.smb.client.password=

# Protocol versions (SMB1 to SMB 3.1.1)
jcifs.smb.client.minVersion=SMB1
jcifs.smb.client.maxVersion=SMB311

# Security
jcifs.smb.client.signingPreferred=false

    protected boolean sendNTLMTargetName = true;
    private byte[] machineId;
    /** Username for guest authentication */
    protected String guestUsername = "GUEST";
    /** Password for guest authentication */
    protected String guestPassword = "";
    /** Whether to allow fallback to guest authentication */
    protected boolean allowGuestFallback = false;

    @DisplayName("isAnonymous and isGuest are always false")
    void testIsAnonymousAndGuestFalse() {
        JAASAuthenticator auth = new JAASAuthenticator();
        // JAAS-based authenticator should never be anonymous or guest
        assertFalse(auth.isAnonymous());
        assertFalse(auth.isGuest());
    }

    @ParameterizedTest
    @EnumSource(SubjectVariant.class)
    @DisplayName("getSubject: caches results and refresh resets cache")