vSAN File Services using Kerberos RC4 which is getting turned off on the next windows update
search cancel

vSAN File Services using Kerberos RC4 which is getting turned off on the next windows update

book

Article ID: 437419

calendar_today

Updated On:

Products

VMware vSAN

Issue/Introduction

Need to remove Kerberos RC4 authentication from vSAN fileservice shares

Environment

vSAN 8.0U3

Cause

Windows is disabling support for RC4 Kerberos authentication

Resolution

The vSAN fileservices utilize active directory for use of Kerberos authentication, to remove the RC4 component the change needs to be made in the active directory configuration. There are no changes required from within the fileshare itself. 

Additional Information

Impact of RPC Sealing Enforcement (Microsoft KB 5021130), RC4 (CVE-2022-37966), and Related Changes (CVE-2022-38023, CVE-2022-37967, CVE-2022-21913) on vCenter Server and ESXi

Powered by Wolken Software