Various versions of Windows have used Kerberos as their primary authentication protocol for over 20 years. However, in certain cases, the operating system must use another method, such as NTLM (NT LAN Manager).
NTLM is an older authentication protocol from Microsoft and was replaced by Kerberos in Windows 2000. However, NTLM is still used to store Windows passwords locally or in the NTDS.dit file in Active Directory domain controllers. NTLM is now considered insecure and contains many serious security vulnerabilities.
Back in October last year, Microsoft officially announced that the company was planning to expand its use of Kerberos, with the ultimate goal of completely eliminating the use of NTLM on Windows, specifically starting on Windows 11 and beyond.
The company has posted on its official website an updated list of deprecated Windows features, which now includes NTLM (New Technology Lan Manager). The announcement covers all versions of NTLM including LANMAN, NTLMv1, and NTLMv2.
By June this year, Microsoft confirmed that it plans to discontinue NTLM support after Windows 11 24H2 and Windows Server 2025 and thus the feature will no longer be available in future versions of Windows client and server.
Today, Microsoft began removing NTLM on Windows 11 24H2 and Windows Server 2025, announcing that NTLMv1 has been removed from the aforementioned Windows versions.
Microsoft previously explained that the reason behind this move was to improve the security of authentication, as more modern protocols like Kerberos would provide better protection. The company now recommends using the Negotiate protocol to ensure that NTLM is only used when Kerberos is not available.
Microsoft has updated the notice on its end of support feature page to read as follows:
All versions of NTLM, including LANMAN, NTLMv1, and NTLMv2, are no longer in active feature development and have been deprecated. Use of NTLM will continue to be maintained in the next release of Windows Server and the next annual release of Windows. Calls to NTLM should be replaced with calls to Negotiate, which will attempt to authenticate using Kerberos and only fallback to NTLM when necessary.
[Update - November 2024]: NTLMv1 has been removed starting with Windows 11 version 24H2 and Windows Server 20205.
NTLM is commonly used by businesses and organizations for Windows authentication, as it "does not require a local network connection to a Domain Controller". It is also "the only protocol supported when using a local account" and "works even if you don't know what the target server is".
These benefits have led to some applications and services hardcoding NTLM instead of switching to more modern authentication protocols such as Kerberos. Kerberos provides a better level of security and is more scalable than NTLM. That is why Kerberos is now the preferred default protocol in Windows environments.
The problem is that while businesses can disable NTLM for authentication, those hard-wired applications and services can still have problems. This is why Microsoft has added a number of new authentication features to Kerberos. These changes are being rolled out so that Kerberos will eventually become the sole Windows authentication protocol.
In addition to NTLMv1, another security feature has also been removed on Windows 11 24H2. Microsoft has confirmed that Windows Information Protection (WIP) or enterprise data protection (EDP) is being removed from the Windows environment. This feature was intended to protect against accidental data leaks.
Windows 11 version 21H2 is one of the major original releases of Windows 11 that began rolling out globally on October 4, 2021.
The year 2023 saw Microsoft betting heavily on artificial intelligence and its partnership with OpenAI to make Copilot a reality.
Microsoft introduced Bluetooth LE (low energy) Audio support with Windows 11 22H2 KB5026446 (build 22621.1778), also known as Moment 3, in May 2023.
After keeping things the same for years, the Sticky Note update in mid-2024 changed the game.
Today, Microsoft officially announced the general availability of Windows Server 2025 along with System Center 2025.
There's always something incredibly cool about the nostalgic user interface of 90s versions of Windows.
More than three years ago, when Microsoft announced Windows 11, the operating system immediately caused a lot of controversy.
The October 2024 report provides an overview of Windows 11's market share compared to other versions of Windows.
Microsoft is said to be getting closer to launching its first foldable smartphone when it was granted a patent for a foldable phone with the ability to fold 360 degrees but without creating wrinkles on the screen on October 1.
In a new post on its Tech Community website, Microsoft has announced plans to discontinue WSUS driver synchronization in favor of its latest cloud-based driver services.
Windows Photo Viewer was first released alongside Windows XP and has quickly become one of the most frequently used tools on Windows.
The latest previews of Windows 11 that Microsoft released this week include an improved About section in the Settings app, where users can get more information about the hardware inside their computer.
To address common issues faced by PC gamers, Microsoft has finally made the Windows operating system easier to navigate with an Xbox controller.
The April security updates for Windows 11 silently created a new empty folder on the C drive.
Microsoft has invested billions of dollars in OpenAI since 2019, although the Redmond-based software giant is by no means the primary investor in the innovative AI startup.
Error code 0xc0000098 in Windows causes a blue screen error on startup. The ACPI.sys driver is often to blame, especially on unsupported versions of Windows 11 like 23H2 or 22H2 or Windows 10.
In some cases, sometimes you start your computer in Safe Mode and the computer freezes. So how to fix the error in this case, please refer to the article below of WebTech360.
Snipping Tool is a powerful photo and video capture tool on Windows. However, this tool sometimes has some errors, such as constantly displaying on the screen.
Every network has a router to access the Internet, but not everyone knows how to make the router work better. In this article, we will introduce some router tips to help speed up the wireless connection in the network.
If the results seem slower than expected, don't be too quick to blame your ISP - mistakes when performing the test can skew your numbers.
In the article below, we will introduce and guide you to learn about the concept of QoS - Quality of Service on router devices.
Windows has a built-in Credential Manager, but it's not what you think it is—and certainly not a replacement for a password manager.
Microsoft charges for its official codecs and doesn't include them in Windows 10. However, you can get them for free without pulling out your credit card and spending $0.99.
While having trouble accessing files and folders can be frustrating, don't panic—with a few simple tweaks, you can regain access to your system.
After creating a USB boot to install Windows, users should check the USB boot's performance to see if it was created successfully or not.
Although Windows Storage Sense efficiently deletes temporary files, some types of data are permanent and continue to accumulate.
You can turn off Windows 11 background apps to optimize performance, save battery and reduce RAM consumption.
When a computer, mobile device, or printer tries to connect to a Microsoft Windows computer over a network, for example, the error message network path was not found — Error 0x80070035 may appear.
We can block Internet access for any application or software on the computer, while other programs can still access the network. The following article will guide readers on how to disable Internet access for software and applications on Windows.
Instead of paying $30 for a year of security updates, keep Windows 10 safe until 2030 with this simple solution.
