Windows Server 2022 Video Tutorials for Beginners:
This is a step by step guide on How to Configure Kerberos Policy Settings in Windows Server 2022 Active Directory.
Alice AUSTIN is studying Cisco Systems Engineering. He has passion with both hardware and software and writes articles and reviews for many IT websites.
3 thoughts on “64. Configure Kerberos Policy Settings in Active Directory | Windows Server 2022”
Nice
In your video 64 about Kerberos Policy Settings, at 7:43, I can see that your "KerbTicket Encryption Type" shown by klist (AES-256-CTS-HMAC-SHA1-96) is much stronger than the default on a newly upgraded W2K22 DC, which has "KerbTicket Encryption Type: RSADSI RC4-HMAC(NT)". It will be nice to have a video from you about this subject and when to and how to strengthen this. I assume the low value in the DC I have seen is for some compatibility with older Windows versions. But if domain does not have older than Windows 10, what is the best value and how do we admins change it? 🙂
Nice
In your video 64 about Kerberos Policy Settings, at 7:43, I can see that your "KerbTicket Encryption Type" shown by klist (AES-256-CTS-HMAC-SHA1-96) is much stronger than the default on a newly upgraded W2K22 DC, which has "KerbTicket Encryption Type: RSADSI RC4-HMAC(NT)". It will be nice to have a video from you about this subject and when to and how to strengthen this. I assume the low value in the DC I have seen is for some compatibility with older Windows versions. But if domain does not have older than Windows 10, what is the best value and how do we admins change it? 🙂
Welcome back I love you so much ❤