Microsoft
Microsoft
MicrosoftAngelo111 You would need to give way more information than this to be able to tell you what would happen.
However the first thing to do is to look at everything individually first. The goal is to first look at what encryption type is supported for each then apply the masking to remove encryption types that are NOT in common between them all.
But if msDS-SupportedEncrptionTypes value is blank/Not Set or set to 0 then it ONLY Supports RC4. Since you are saying RC4 is disabled, then it would fail. But it gets complicated cause we also have to look at the Keberbos Client configuration cause that will affect it for certain logons or service ticket requests. Also need to know if the app is doing any U2U ticketing as this also affects it.
Suffice it to say either make sure that all security principals have a value for msDS-SupportedEncryptionTypes or make sure that you implement the registry value DefaultDomainSupportedEncTypes on all domain controllers in the forest.