Jul 07 2021 07:05 PM
recently we started seeing "Suspected Golden Ticket usage (nonexistent account)" alerts from Mac machines which running on monterey beta version.
Based on our investigation this getting triggered when user tries to authenticate using enterprise connect on monterey OS. username SOMEDOMAIN.COM\WELLKNOWN/ANONYMOUS@SOMEDOMAIN.COM
Anyone else experiencing this.?
Nov 30 2021 11:02 AM
Feb 15 2022 07:06 AM