Windows Report

Microsoft Warns of Kerberos Changes That Could Break Enterprise Logins

Microsoft will enforce stronger Kerberos encryption in April 2026, removing RC4 support and potentially impacting enterprise setups.
Threat Post

Kerberos Authentication Spoofing: Don’t Bypass the Spec

Yaron Kassner, CTO at Silverfort, discusses authentication-bypass bugs in Cisco ASA, F5 Big-IP, IBM QRadar and Palo Alto Networks PAN-OS. Authentication is the front gate to security systems, so if ...
CSOonline

Don’t count on Kerberos to thwart pass-the-hash attacks

Several readers responded to my previous post on pass-the-hash attacks, asking if Kerberos authentication versus LANManager, NTLM, or NTLMv2 was an effective defense. It’s a good question, one that I ...
Redmond Magazine

Kerberos Authentication 101: Understanding the Essentials of the Kerberos Security Protocol

While Windows IT professionals deal with security on a daily basis, very few understand the under-the-hood protocol, Kerberos. Kerberos is a security protocol in Windows introduced in Windows 2000 to ...
Ars Technica

Internet Explorer always using Kerberos authentication... even when unsupported.

Server: Fully-patched 2008 R2, running Certificate Services. The /certsrv virtual directory is using (I believe) default settings. Specifically, this means it's using Windows Authentication, with NTLM ...
Ars Technica

Kerberos authentication between domains in AD

Heres a quick question I'm having trouble finding a straight answer too in the RK or other sources, and I don't have time to model it in the test lab before our meeting (argument) next week.<P>If an ...