cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Nameless
Engaged Sweeper

Hi Guys, 

Wondering if there is a way we can restrict Lan Sweeper to use Kerberos only? It is still showing in our DC NTLM auditing logs before we disable all NTLM,,,..I am not sure what is still using NTLM?  I can see onprem AD is already using LDAPs...

Thanks for tips. 

John

 

3 REPLIES 3
David_GF
Lansweeper Tech Support
Lansweeper Tech Support

Lansweeper will attempt to authenticate via Kerberos first, falling back to NTLM if this fails. This does mean though that if Kerberos is available, NTLM will effectively not be used by Lansweeper when scanning domain-connected Windows devices.



~~~~~~~ (〃 ̄︶ ̄)人( ̄︶ ̄〃) ~~~~~~~
Sweep that LAN, sweep it!
Nameless
Engaged Sweeper

Any updates please? 

LS doesn't select auth protocol for WMI - it's inter-OS level, IMHO.