Security Basics mailing list archives
Kerberos and NTLM Authentication protocol
From: ". ." <chirobado () hotmail com>
Date: Wed, 10 Nov 2004 22:32:42 +0000
In a domain with DC 2003 and clients all windows 2000 and XP:* ¿Is there any important reason to change de LMCompatibility level to prevent using LM/NTLM and use only NTLMv2 in both clients and DCs?
As far as I know, in this enviroment, authentication agains DC is set through Kerberos v5. Keberos uses the NT Hash, but no NTLM authentication protocol at all.
If there is no case where NTLM or LM authentication protocol is needed (it would be needed just between clients, but no w9x or nt clients in the network)... is there any reason to be "worried"?
Thanks. _________________________________________________________________Un amor, una aventura, compañía para un viaje. Regístrate gratis en MSN Amor & Amistad. http://match.msn.es/
Current thread:
- Kerberos and NTLM Authentication protocol . . (Nov 10)
- RE: Kerberos and NTLM Authentication protocol David Schenz (Nov 12)
- <Possible follow-ups>
- RE: Kerberos and NTLM Authentication protocol Roger A. Grimes (Nov 12)