You are using an out of date browser. It may not display this or other websites correctly. You should upgrade or use an alternative browser.
iwa
About this tag
The tag iwa on WindowsForum.com covers discussions about Integrated Windows Authentication (IWA) and related security advisories from Microsoft. Topics include credential relaying attacks, Extended Protection for Authentication, and updates to protect against NTLMv1 and LAN Manager authentication vulnerabilities. The content focuses on Microsoft security advisories (974926 and 973811) that provide guidance on enhancing credential handling and network authentication security on Windows platforms. These threads are relevant for IT professionals and system administrators managing Windows authentication security.
Severity Rating:
Revision Note: V1.14 (January 8, 2013): Updated the FAQ and Suggested Actions with information about attacks against NTLMv1 (NT LAN Manager version 1) and LAN Manager (LM) network authentication. Microsoft Fix it solutions for Windows XP and Windows Server 2003 are available to...
attack
authentication
credentials
extended protection
faq
fix
iwa
lan manager
microsoft
microsoft solutions
network
ntlm
protection
security
suggested actions
update
v2 settings
version 1.14
windows server
windows xp
Revision Note: V1.0 (December 8, 2009): Advisory published.
Summary: This advisory addresses the potential for attacks that affect the handling of credentials using Integrated Windows Authentication (IWA), and the mechanisms Microsoft has made available for customers to help protect...
Revision Note: V1.9 (December 17, 2010): Removed the FAQ entry, originally added December 14, 2010, about a non-security update enabling Microsoft Outlook to opt in to Extended Protection for Authentication. Advisory Summary:Microsoft is announcing the availability of a new feature, Extended...
Revision Note: V1.8 (December 14, 2010): Updated the FAQ with information about a non-security update enabling Microsoft Outlook to opt in to Extended Protection for Authentication. Advisory Summary:Microsoft is announcing the availability of a new feature, Extended Protection for...
Revision Note: V1.6 (September 14, 2010): Updated the FAQ with information about a non-security update enabling Outlook Express and Windows Mail to opt in to Extended Protection for Authentication.Summary: Microsoft is announcing the availability of a new feature, Extended Protection for...
Revision Note: V1.6 (September 14, 2010): Updated the FAQ with information about a non-security update enabling Outlook Express and Windows Mail to opt in to Extended Protection for Authentication.Summary: Microsoft is announcing the availability of a new feature, Extended Protection for...