Microsoft
Microsoft
Microsoftovidiubesu - The only way to fix the 11bchecker script from not reporting the message stating that 3 objects do not have the msDS-SupportedEncryptionTypes attribute set to NULL / not configured or set to 0 is to actually set a value on them.
I cannot tell you what value to put in this attribute for each of these accounts as I do not know your environment or these third-party applications/appliances and what Kerberos encryption types they support. If you need help, I suggest reaching out to the vendor first and then opening a case with Microsoft support.
dnacho - If you have installed any security update after the November 2022 update, then you have the November 2022 code changes in place on your domain controllers along with any of the newer updates.
thesquirrel1130 - This is currently a known issue, and a resolution has been identified. A security update to address this should be out within the next 3 - 4 months. If you want more detailed information you will need to create a case.