90-Day Reminder: The second phase of Kerberos PAC signature validation vulnerability mitigation begins October 15, 2024
If you're using Windows domain controllers and clients, you should be aware of the upcoming Enforced by Default phase of Kerberos PAC signature validation mitigation, which starts on October 15, 2024. Updates released on or after that date will enforce secure behavior by default, with no option to revert. The change is intended to mitigate CVE-2024-26248 and CVE-2024-29056 vulnerabilities, but un-updated environments will cease to recognize the new request structure, causing security checks to fail. Users are advised to ensure they have the necessary updates and follow recommended security measures to prevent outages. In addition to KB5037754 and KB5020805, monitoring audit events and enabling enforcement mode can assist with the process.
The post 90-Day Reminder: The second phase of Kerberos PAC signature validation vulnerability mitigation begins October 15, 2024 appeared first on M365 Admin.
Published on:
Learn more
Related posts
The July 2024 Windows security update is now available
If you're a Windows user, it's essential to install the July 2024 security update as soon as possible to ensure the safety of your system. The...
Easily detect CVE-2024-21427 with Microsoft Defender for Identity
A recent CVE-2024-21427 Windows Kerberos Security Feature Bypass Vulnerability has been fixed to prevent the potential bypass of authenticatio...
The May 2024 Windows security update is now available
Windows users, the May 2024 security update is now ready for installation on Windows 11 and all supported versions of Windows 10. It is highly...
New steps have been released to mitigate Kerberos signature validation vulnerabilities
Recent developments related to the Kerberos PAC Validation Protocol have necessitated the release of certain Take Action steps. These new step...
The April 2024 security update is now available
Attention Windows 11 and Windows 10 users! The April 2024 security update is now available. It is highly recommended that you install this upd...
The March 2024 Windows non-security preview update is now available
The March 2024 non-security preview update for Microsoft Windows 11 and all supported versions of Windows 10 is now available. The update is e...
Out-of-band updates to address a Windows Server domain controller issue
Microsoft has released out-of-band (OOB) updates for some versions of Windows to address an issue related to a memory leak in the Local Securi...
Take action: March 2024 security update is now available
The March 2024 security update is now accessible for Windows 11 and all supported versions of Windows 10, and it is advised to install these u...
The January 2024 Windows non-security preview update is now available for Windows 11, versions 22H2 and 23H2
The January 2024 non-security preview update is now available for Windows 11, versions 22H2 and 23H2. This update focuses on addressing variou...
Take action: January 2024 security update is now available
Attention Windows 11 and Windows 10 users! The January 2024 security update is now available, and it is recommended that you install it prompt...