Skip to main content

Scheduled Service Change: Enable Enforcement Mode for Netlogon Secure Channel Connections

Event:
2020-10-05 10:00:00
Expected Duration:
2020-10-08 16:00:00
Status:
Closed
Brief Description:
Between Monday, October 5, and Thursday, October 8, 2020, CIT will roll out a configuration change that will follow up on security patches previously made to cornell.edu domain controllers.
User Impact:
CIT does not anticipate that the planned changes will affect server performance for most users. Any users experiencing login issues to the cornell.edu domain should contact the IT Service Desk.
Services Affected:
Authentication and Authorization
Full Description:
Between Monday, October 5, and Thursday, October 8, 2020, CIT will roll out a configuration change that will follow up on security patches previously made to cornell.edu domain controllers. The planned change will proactively enforce Netlogon secure channel connections, further reducing the possibility that malicious users could exploit vulnerabilities.

CIT does not anticipate that the planned changes will affect server performance for most users. Any users experiencing login issues to the cornell.edu domain should contact the IT Service Desk.

More information about this vulnerability can be found at the Microsoft Security Response Center’s web page, CVE-2020-1472 | Netlogon Elevation of Privilege Vulnerability. If you have questions or concerns, please email mna1@cornell.edu.
CIT TDX ID:
153325



Timeline of Changes

Description Current Status Date Time
Between Monday, October 5, and Thursday, October 8, 2020, CIT will roll out a configuration change that will follow up on security patches previously made to cornell.edu domain controllers. The planned change will proactively enforce Netlogon secure channel connections, further reducing the possibility that malicious users could exploit vulnerabilities. CIT does not anticipate that the planned changes will affect server performance for most users. Any users experiencing login issues to the cornell.edu domain should contact the IT Service Desk. More information about this vulnerability can be found at the Microsoft Security Response Center’s web page, CVE-2020-1472 | Netlogon Elevation of Privilege Vulnerability. If you have questions or concerns, please email mna1@cornell.edu. 2020-10-01 14:10:38