Adding NTLM Authentication to RPC: security downgrade?

Hi everyone,

I need to install a third part tool, that requires to add NTLM authentication (for now, I have only "Negotiate") to RPC Authentications method in IIS Exchange Server 2013.

I'm concerned about security issue that this operation can brought with, or other issues about authentication with Outlook Anywhere or any other task with outlook.

The cmdlet is this one:

 Set-OutlookAnywhere -Identity:"<name-of-your-server>\Rpc (Default Web Site)" IISAuthenticationMethods: Negotiate, ntlm

Can anyone give me some infos about this topic? Someone have already experienced security issues with a scenario like this?

Thanks

July 15th, 2015 9:32am

The -IISAuthenticationMethods parameter does not support Negotiate anyway. You can only use Basic or NTLM.

https://technet.microsoft.com/en-us/library/bb123545(v=exchg.150).aspx


  • Edited by Li Zhen 17 hours 18 minutes ago
Free Windows Admin Tool Kit Click here and download it now
July 15th, 2015 10:10am

Sorry, but in the configuration guide of the tool it seems to be possible: http://www.codetwo.com/kb/setting-up-the-iis-for-exchange-sync/

It is possible that is a wrong configuration guide? The SwHouse is quite popular and well reviewed...

July 15th, 2015 10:21am

This topic is archived. No further replies will be accepted.

Other recent topics Other recent topics