Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
jvillar
Participant

Problems Removing NTLM

I'm going to repose the question regarding removing NTLMv1 in the domain since the posts I've seen are from 2021,
The Checkpoint version is 81.20.

When I proceeded to disable the use of NTLM in the domain I found two problems:
1) Firewalls lose connection to the DC
2) Remote access to internal computers by RDP using the Mobile Access module gives an error when validating the user.
Unchecking the obligation to only use connections with network-level authentication works.
I haven't tried to include equipment as an exception in the DC GPOs yet.
At this crossroads, will it be better to remove the use of NTLMv1 and use the indicated exceptions or not to remove NTLMv1?

Any ideas?

Best Regards

0 Kudos
3 Replies
Lesley
Leader Leader
Leader

This will help maybe to move to ntlm2

https://support.checkpoint.com/results/sk/sk165690

Do you use IDC collectors? They support also Kerberos which I would recommend 

-------
If you like this post please give a thumbs up(kudo)! 🙂
0 Kudos
jvillar
Participant

The link is broken.

0 Kudos
PhoneBoy
Admin
Admin

The link works, but you have to be logged into SupportCenter and be associated with an account with an active support agreement.

In any case, the link says that you need to change the policy on the Domain Controller to “Send NTLMv2 response only. Refuse LM & NTLM

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

Upcoming Events

    CheckMates Events