Windows 11 will introduce new features to make the authentication process extremely secure

Microsoft is introducing new features in Windows 11 to reduce the use of NTLM (NT LAN Manager), an older authentication process that is inferior to Kerberos Security – Just like Google announced that keys are coming to WhatsApp and other apps.

"Kerberos has been the default Windows authentication protocol since 2000, but there are still cases where it is unusable and Windows falls back to NTLM," Microsoft's Matthew Palko said in the official announcement.

The first feature, IAKerb, allows clients to authenticate using Kerberos in more diverse network topologies, such as firewall segmented environments or remote access scenarios.

The second feature is a local KDC for Kerberos, which adds Kerberos support for local accounts so that remote authentication of local user accounts can be done using Kerberos.

Not only that, the Redmond-based tech giant is also expanding NTLM management controls to give administrators more flexibility in how they track and block NTLM usage in their environments. aspect.

The above is the detailed content of Windows 11 will introduce new features to make the authentication process extremely secure. For more information, please follow other related articles on the PHP Chinese website!