Scheduled Service Change: Enable Enforcement Mode for Netlogon Secure Channel Connections
Event:
2020-10-05 14:00:00
Expected Duration:
2020-10-08 20:00:00
Status:
Closed
Brief Description:
Between Monday, October 5, and Thursday, October 8, 2020, CIT will roll out a configuration change that will follow up on security patches previously made to cornell.edu domain controllers.
User Impact:
CIT does not anticipate that the planned changes will affect server performance for most users. Any users experiencing login issues to the cornell.edu domain should contact the IT Service Desk.
Services Affected:
Authentication and Authorization
Full Description:
Between Monday, October 5, and Thursday, October 8, 2020, CIT will roll out a configuration change that will follow up on security patches previously made to cornell.edu domain controllers. The planned change will proactively enforce Netlogon secure channel connections, further reducing the possibility that malicious users could exploit vulnerabilities.
CIT does not anticipate that the planned changes will affect server performance for most users. Any users experiencing login issues to the cornell.edu domain should contact the IT Service Desk.
More information about this vulnerability can be found at the Microsoft Security Response Center’s web page, CVE-2020-1472 | Netlogon Elevation of Privilege Vulnerability. If you have questions or concerns, please email mna1@cornell.edu.
CIT does not anticipate that the planned changes will affect server performance for most users. Any users experiencing login issues to the cornell.edu domain should contact the IT Service Desk.
More information about this vulnerability can be found at the Microsoft Security Response Center’s web page, CVE-2020-1472 | Netlogon Elevation of Privilege Vulnerability. If you have questions or concerns, please email mna1@cornell.edu.
CIT TDX ID:
153325
Timeline of Changes
| Description | Current Status | Date | Time |
|---|---|---|---|
| Between Monday, October 5, and Thursday, October 8, 2020, CIT will roll out a configuration change that will follow up on security patches previously made to cornell.edu domain controllers. The planned change will proactively enforce Netlogon secure channel connections, further reducing the possibility that malicious users could exploit vulnerabilities. CIT does not anticipate that the planned changes will affect server performance for most users. Any users experiencing login issues to the cornell.edu domain should contact the IT Service Desk. More information about this vulnerability can be found at the Microsoft Security Response Center’s web page, CVE-2020-1472 | Netlogon Elevation of Privilege Vulnerability. If you have questions or concerns, please email mna1@cornell.edu. | 2020-10-01 | 18:10:38 |