Forum Discussion
RPC Endpoint Mapper Client Authentication uses NTLM
Introduction The main goal is to secure existent windows 10 clients. As there a few hardening recommendations from for example CIS and Microsoft concerning secure OS configuration i discovered a pot...
I just ran into your thread here today trying to do an overview of the RPC Endpoint Mapper (again).
A few years back, I had this issue with a case with MS PG. I also found the same as you did and I was able to get them to update their documentation to show this info.
https://learn.microsoft.com/en-us/windows-server/security/rpc-interface-restrict
if you look at the Blue Important section, it will list what we both are seeing.
I'm just happy that I was able to get MS to document it and not make it some mystery.
We are about 99% complete in eradicating NTLM from our environments. Some apps still struggle to either use kerberos or move to something else like SAML/Oath.