To my knowledge the current best practicen is to have all NTLM versions disabled...

		jpc0 on May 2, 2024 \| parent \| context \| favorite \| on: At Microsoft, years of security debt come crashing... To my knowledge the current best practicen is to have all NTLM versions disabled and use Kerberos which surprise surprise is also the backbone of linux enterprise login... AD is just a fancy interface to LDAP with Kerberos, that sound familiar in any way?