Microsoft officially deprecates NTLM and promotes Kerberos authentication
Several months after announcing its intention to do so, Microsoft has official deprecated the NTLM (NT LAN Manager) authentication protocol in Windows and Windows Server.
NTLM is now a very old protocol which has been superseded by the more secure and feature-rich Kerberos. It will still be possible to use NTLM until the next release of Windows and Windows Server, but Microsoft is keen for users to take action now.
Microsoft releases emergency patches to fix Kerberos authentication issues on multiple versions of Windows
It is just a few days since Microsoft acknowledged problems with Kerberos authentication. Affecting Windows Servers with the Domain Controller role, the issues mean that domain user sign in could fail, Remote Desktop connection could fail to connect, and more.
Now the company has released a series of emergency updates to resolve the issues. A total of six out-of-band updates are available (KB5021652, KB5021653, KB5021654, KB5021655, KB5021656 and KB5021657), and they must be manually installed.
