Hi,
I was reading the technet security advisory http://support.microsoft.com/kb/2868725 , specifically on disabling RC4 Cipher on a windows system.
We've been using a lot of Kerberos based integration in our Active Directory from third party platforms (krb5.conf file), and set the settings to RC4_HMAC for encryption. Many of those third-party products are not even capable of AES128/256 and some needed still support for the DES encryption type (which was also changed -read: disabled- in Windows 2008 R2 Domain Controllers).
Question:
- disabling RC4 Cipher as mentioned in kb2868725 on a Domain Controller, in which way does that relate to the RC4_HMAC encryption in Kerberos? Or is it not related?
Kind Regards,
David