YusufOnSecurity.com
This is a weekly podcast on cyber security domains. We discuss, dissect and demystify the world of security by providing an in-depth coverage on the cybersecurity topics that matter most. All these in plain easy to understand language. Like it, share it, and most importantly enjoy it!
YusufOnSecurity.com
260 - From NTLM to Kerberos - Microsoft's Security Transformation Begins - Part 2
Use Left/Right to seek, Home/End to jump to start or end. Hold shift to jump forward or backward.
Enjoying the content? Let us know your feedback!
In Part 1 of this series, we explored why Microsoft is finally saying goodbye to NTLM authentication after more than 25 years of service. We discussed NTLM's security weaknesses, from relay attacks to weak cryptography, and touched on Kerberos as the obvious alternative that's been waiting in the wings since ...well....Windows 2000.
Today in Part 2, we're getting practical. We'll explore the two groundbreaking major Microsoft is adding to Kerberos—IAKerb and Local KDC—that will finally allow organizations to eliminate NTLM entirely. More importantly, we'll discuss what this means for you as a defender, how to prepare your environment, and of course...what timeline you're working with.
- techcommunity.microsoft.com: The evolution of Windows authentication
- www.securityweek.com: Microsoft Improving Windows Authentication, Disabling NTLM
- www.bleepingcomputer.com: Microsoft plans to kill off NTLM authentication in Windows 11
- thehackernews.com: Microsoft to Phase Out NTLM in Favor of Kerberos for Stronger Authentication
Be sure to subscribe!
You can also stream from https://yusufonsecurity.com
In there, you will find a list of all previous episodes in there too.
