pingcastle icon indicating copy to clipboard operation
pingcastle copied to clipboard

Published 20 hours ago verified publisher icon vletoux

KDC armoring reports inaccurate

Open debold opened this issue 1 year ago • 8 comments

Scans for the KDC armoring settings do not include the WOW6432Node path for the policy templates and therefore sometimes do not recognize the correctly configured GPOs:

HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Policies\System\KDC\Parameters HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Policies\System\Kerberos\Parameters

Issue encountered on a fresh Windows Server 2022 based domain (DFL/FFL 2016) localized in German

https://github.com/vletoux/pingcastle/blob/b099a83a1bfa9ef7d5ac0c58405296e9c66f8f51/Healthcheck/HealthcheckAnalyzer.cs#L2759

debold avatar Mar 29 '23 11:03 debold