How to workaround impact seen after applying CVE-2022-38023 on domain controllers after June 13 2023
Applies to
- ONTAP 9
- Windows Active Directory Domain (DC)
- CVE-2022-38023
- KB5021130
Answer
- If not on a fixed version for BUG 1514175 and after applying the patch for CVE-2022-38023 on or after June 13 2023, set RequireSeal to Compatibility Mode on every DC
- Please NOTE: After July 11 2023 Microsoft Hotfix is applied, to allow NTLM authentications, the registry workaround is no longer valid and you must be on FIXED versions of BUG 1514175