Forum Discussion

Copper Contributor

Mar 14, 2026

Kerberos and the End of RC4: Protocol Hardening and Preparing for CVE‑2026‑20833

CVE-2026-20833 addresses the continued use of the RC4‑HMAC algorithm within the Kerberos protocol in Active Directory environments. Although RC4 has been retained for many years for compatibility wit...

admin

azure

identity and access management

identity protection

identity standards

Log Analytics

microsoft defender for identity

security

threat protection

kash3

Copper Contributor

Mar 29, 2026

If Rc4 still needed,does gpo take precedence or the ms ds attribute to be changed on all accounts or domain controllers