At a minimum, you want to disable NTLMv1 because it is a glaring security hole in your environment.
If necessary, you can create an exception list to allow specific servers to use NTLM authentication. I've also tried to downgrade the auth to "vulnerable" via gpedit, to no avail. To disable NTLM, use the Group Policy setting Network Security: Restrict NTLM. I've even tried it on a brand new lab domain in a local VM : same thing. I've check the providede link and both my win 10 client and my windows servers 2019 are completly updated and their tspkg.dll are in an upper version than the one with the patch for the credssp/oracle remediation CVE. I'm activating the Network security: Restrict NTLM: Incoming NTLM traffic, Network security: Restrict NTLM: NTLM authentication in this domain and Network security: Restrict NTLM: Outgoing NTLM traffic to remote servers, to deny all incomming or ougoing NTLM from/to clients/servers.īut then, when try to connect via RDP, I'm getting this error message : I'm trying to disable NTLM (for security reason) on a new domain.
0 kommentar(er)
