Action required: Windows Kerberos hardening (RC4) may affect FSLogix profiles on SMB storage

A Windows security hardening change beginning in April 2026 updates default Kerberos encryption behavior and may impact FSLogix profile access for customers using SMB plus Active Directory storage. If your environment still relies on RC4 or has encryption settings left unset (null), you may see authentication issues unless you move to AES-SHA1. Review your configuration now, especially for non-Azure Files SMB storage, or Azure Files with AD DS where remediation is recommended by the end of June 2026.

Beginning with the April 2026 Windows cumulative update, Kerberos default behavior changes: when an Active Directory object’s encryption type is not explicitly set (null), Windows will default to AES...

Updated Mar 27, 2026

Version 1.0

Jason_Parker

Microsoft

Joined January 15, 2020

View Profile

FSLogix Blog

Follow this blog board to get notified when there's new activity

Iszapelka

Occasional Reader

Mar 28, 2026

https://m.facebook.com/share.php?u=https://techcommunity.microsoft.com/blog/fslogix-blog/action-required-windows-kerberos-hardening-rc4-may-affect-fslogix-profiles-on-sm/4506378&t=Action. ? AES‑SHA1...

WNIC Thumbnail.png

Live Server (Five Server)

2.7M

Yannick

A better Live Server with instant updates, highlights and some PHP support.

Markdown Preview Mermaid Support

4.3M

Matt Bierner

Adds Mermaid diagram and flowchart support to VS Code's builtin markdown preview

"as is".

AI 未來式

DAC7, formularzy 1099-K