Anonymous

Asked: May 31, 20232023-05-31T17:06:07+05:30 2023-05-31T17:06:07+05:30In: Active Directory

CVE-2022-38023

F or this issue regarding NetLogon/RPC signing and sealing, the article says this in the FAQs:

“To help detect older clients that are not using the strongest available crypto, this update introduces event logs for clients that are using RC4.”

https://support.microsoft.com/en-us/topic/kb5021130-how-to-manage-the-netlogon-protocol-changes-related-to-cve-2022-38023-46ea3067-3989-4d40-963c-680fd9e8ee25#registry5021130

This event has led to confusion, at least on my part. I have been thinking that because I see this warning in the System log on the DCs, that enforcement will break communication with AD for the device that is flagged in the event.

I’m beginning to think based on that statement in the FAQs, that this event is entirely separate from the enforcement of signing/sealing. It’s more like they just threw this in because it’s somewhat related, almost a non-sequitur.

Can anyone clarify?

Leave an answer
Cancel reply

You must login to add an answer.

Continue with Facebook

Continue with Google

or use

Need An Account,

Continue with Facebook

Continue with Google

CVE-2022-38023

Leave an answer
Cancel reply

DFSR no longer replicates files

Wintel Administrator Interview Questions

What is Active Directory?

Active Directory Domain Services Overview

How to fix the issue with the slow authentication

Manoj Kumar

Vipan Thakur

Vinayak Gosavi

Spread the word.

Sign Up

Sign In

Forgot Password

CVE-2022-38023

Leave an answerCancel reply

Leave an answer
Cancel reply