Forum Discussion
Kerberos and the End of RC4: Protocol Hardening and Preparing for CVE‑2026‑20833
CVE-2026-20833 addresses the continued use of the RC4‑HMAC algorithm within the Kerberos protocol in Active Directory environments. Although RC4 has been retained for many years for compatibility wit...
hello, we added the registry key for as instructed in the MS article but are not seeing any 201-209 events. Any ideas what we are doing wrong ?
- Phase 1 - Auditing - January 2026:
- starting from the January update, you can create the RC4DefaultDisablementPhase registry key. Set it to 1 to enable logging of the new events (201-209) on domain controllers.
- Nothing else changes, for now.