MsecureKB - Microsoft Security & Identity Forum

Provide a Microsoft Security & Identity Support, Troubleshooting, and more
 
HomeHome  FAQFAQ  RegisterRegister  Log inLog in  

Share | 
 

 Changes in Kerberos Authentication

View previous topic View next topic Go down 
AuthorMessage
shuki
Admin
avatar

Posts : 43
Points : 58

PostSubject: Changes in Kerberos Authentication   Mon Aug 25, 2014 1:53 pm

DES not enabled by default in Windows 7 and Windows Server 2008 R2

Both DES cipher suites (DES-CBC-MD5 & DES-CBC-CRC) are disabled by default inWindows 7.The following cipher suites are enabled by default in Windows 7 and Windows Server 2008 R2:
AES256-CTS-HMAC-SHA1-96

AES128-CTS-HMAC-SHA1-96

RC4-HMAC

Enabling DES encryption types for Kerberos

In Windows 7 and Windows Server 2008 R2, you must configure your computers to use the DES-CBC-MD5 or DES-CBC-CRC cipher suites. If your environment requires DES, then this setting might affect compatibility with client computers or services and applications in your environment.
The Network security: Configure encryption types allowed for Kerberos policy setting is located in Computer Configuration\Security Settings\Local Policies\Security Options:



Back to top Go down
http://msecurekb.forumv.biz
 
Changes in Kerberos Authentication
View previous topic View next topic Back to top 
Page 1 of 1
 Similar topics
-
» Jersey Authentication Service
» PAYPAL CLAIMS FOR FAKE JERSEYS
» Real or Fake Chicago Bears Brian Urlacher jersey

Permissions in this forum:You cannot reply to topics in this forum
MsecureKB - Microsoft Security & Identity Forum :: Active Directory :: Authentication Methods & Protocols - Kerberos | NTLM | SSL |-
Jump to: