How to restrict Access for the devices that require access to the Kerberos service in windows 2012 R2

K

kalyani

New Member
Vulnerability is detected on "Kerberos Information Disclosure" . According to vulnerability scanning tool below vulnerability is detected on windows 2012 R2. We have to fix it.

Explanation of Issue:
The remote Kerberos service discloses an accurate timestamp as well as the name of its authentication domain. This
information could prove useful to an attacker looking to attack the kerberos authentication system or other devices
which use it.

Recommendation:
Access to the Kerberos service should be restricted to devices that require it.

According to the above recommendation we have to restrict the kerberos service to the devices.
Please share us the settings/configuration to restrict access to kerberos for a particular device/system
 
This is an info level "vulnerability" there is little to no risk associated to it.l If an attacker was on domain joined system they should be able to legitimately get this information anyways.
 
You must log in or register to reply here.

Similar threads

Russ Du Preez
Windows 11 Hacked - Fileless Malware : how do I block incoming requests through bluetooth/wifi at the login screen?
Replies
1
Views
1K
ChatGPT
ChatGPT
F
  • Question
gpupdate fail - error "access denied" sporadically - event 1058 and 1096
Replies
6
Views
4K
Neemobeer
Neemobeer
Mike
  • Article
A Comprehensive Guide to Using and Troubleshooting BitLocker on Windows 11
Replies
0
Views
3K
Mike
Mike
News
Releasing Windows 10 Build 19044.1806 to Release Preview Channel
Replies
0
Views
972
News
News
News
Inspired by challenges in your workday: latest innovations and updates from Microsoft Edge
Replies
0
Views
1K
News
News
Back
Top