Microsoft confirms a 3-phase strategy to deprecate NTLM, improve auditing, prioritize Kerberos, and disable NTLM by default ...

Microsoft has detailed a three-phased roadmap leading to NTLM being completely disabled in the next version of Windows Server ...

Microsoft is beginning a phased process to disable NTLM, the decades-old, weak authentication protocol, by default in future ...

Microsoft announced that it will disable the 30-year-old NTLM authentication protocol by default in upcoming Windows releases due to security vulnerabilities that expose organizations to cyberattacks.

Microsoft is preparing one of the most consequential security shifts in Windows in decades, turning off NTLM authentication ...

Microsoft is investigating a new known issue causing enterprise domain controllers to experience Kerberos authentication problems after installing security updates released to address CVE-2020-17049 ...

Microsoft eased enterprise security teams into 2024 with a relatively light January security update consisting of patches for 48 unique CVEs, just two of which the company identified as being of ...

Server: Fully-patched 2008 R2, running Certificate Services. The /certsrv virtual directory is using (I believe) default settings. Specifically, this means it's using Windows Authentication, with NTLM ...

Microsoft intends to disable the insecure NTLM protocol by default with the next Windows Server version. However, its release ...

Microsoft is working on a fix for a bug in last week's patch for a bypass vulnerability in the Kerberos Key Distribution Center (KDC) security feature. Microsoft has flagged the issue affecting ...

Do you think Microsoft’s Kerberos implementation follows the Kerberos standard? Add your comments and questions to the online Kerberos discussion. In Greek mythology , Kerberos is the three-headed ...