KB2871997 and Wdigest – Part 2

  If you got here inadvertently glance at Part 1 as well.  http://blogs.technet.com/b/srd/archive/2014/06/05/an-overview-of-kb2871997.aspx has a great section on this already and discusses how to identify Wdigest use by looking at DC Security Event logs to see if you have any events that show Wdigest usage.  If you are fortunate enough to have a SIEM solution…

1

KB2871997 and Wdigest – Part 1

  In May of this past year we released a “Security” updated labeled kb2871997 which basically back ports a number of security features that were introduced in Windows 8.1/2012 R2 to Win 7/2008/8/2012.  If you want to read the details you can start here http://support.microsoft.com/kb/2871997 however the point of this post is to focus specifically…

1