MsecureKB - Microsoft Security & Identity Forum

Provide a Microsoft Security & Identity Support, Troubleshooting, and more
HomeHome  FAQFAQ  RegisterRegister  Log inLog in  


 Changes in Kerberos Authentication

Go down 

Posts : 43
Points : 58

Changes in Kerberos Authentication Empty
PostSubject: Changes in Kerberos Authentication   Changes in Kerberos Authentication Icon_minitimeMon Aug 25, 2014 1:53 pm

DES not enabled by default in Windows 7 and Windows Server 2008 R2

Both DES cipher suites (DES-CBC-MD5 & DES-CBC-CRC) are disabled by default inWindows 7.The following cipher suites are enabled by default in Windows 7 and Windows Server 2008 R2:



Enabling DES encryption types for Kerberos

In Windows 7 and Windows Server 2008 R2, you must configure your computers to use the DES-CBC-MD5 or DES-CBC-CRC cipher suites. If your environment requires DES, then this setting might affect compatibility with client computers or services and applications in your environment.
The Network security: Configure encryption types allowed for Kerberos policy setting is located in Computer Configuration\Security Settings\Local Policies\Security Options:

Changes in Kerberos Authentication Kerber10

Back to top Go down
Changes in Kerberos Authentication
Back to top 
Page 1 of 1

Permissions in this forum:You cannot reply to topics in this forum
MsecureKB - Microsoft Security & Identity Forum :: Active Directory :: Authentication Methods & Protocols - Kerberos | NTLM | SSL |-
Jump to: