ONTAP guidance for Microsoft KB 5021131
Applies to
- ONTAP 9
- RC 4 ciphers
- AES
Issue
As per Microsoft KB 5021131:
Summary The November 8, 2022 and later Windows updates address security bypass and elevation of privilege vulnerability with Authentication Negotiation by using weak RC4-HMAC negotiation.
|
- This update will set AES as the default encryption type for session keys on accounts that are not marked with a default encryption type already.
- To help secure your environment, install the Windows update that is dated November 8, 2022 or a later Windows update to all devices, including domain controllers.
- To learn more about these vulnerabilities,see CVE-2022-37966.