Various versions of Windows have used Kerberos as their primary authentication protocol for over 20 years. However, in certain cases, the operating system must use another method, such as NTLM (NT LAN Manager).
NTLM is an older authentication protocol from Microsoft and was replaced by Kerberos in Windows 2000. However, NTLM is still used to store Windows passwords locally or in the NTDS.dit file in Active Directory domain controllers. NTLM is now considered insecure and contains many serious security vulnerabilities.
Back in October last year, Microsoft officially announced that the company was planning to expand its use of Kerberos, with the ultimate goal of completely eliminating the use of NTLM on Windows, specifically starting on Windows 11 and beyond.
The company has posted on its official website an updated list of deprecated Windows features, which now includes NTLM (New Technology Lan Manager). The announcement covers all versions of NTLM including LANMAN, NTLMv1, and NTLMv2.
By June this year, Microsoft confirmed that it plans to discontinue NTLM support after Windows 11 24H2 and Windows Server 2025 and thus the feature will no longer be available in future versions of Windows client and server.
Today, Microsoft began removing NTLM on Windows 11 24H2 and Windows Server 2025, announcing that NTLMv1 has been removed from the aforementioned Windows versions.
Microsoft previously explained that the reason behind this move was to improve the security of authentication, as more modern protocols like Kerberos would provide better protection. The company now recommends using the Negotiate protocol to ensure that NTLM is only used when Kerberos is not available.
Microsoft has updated the notice on its end of support feature page to read as follows:
All versions of NTLM, including LANMAN, NTLMv1, and NTLMv2, are no longer in active feature development and have been deprecated. Use of NTLM will continue to be maintained in the next release of Windows Server and the next annual release of Windows. Calls to NTLM should be replaced with calls to Negotiate, which will attempt to authenticate using Kerberos and only fallback to NTLM when necessary.
[Update - November 2024]: NTLMv1 has been removed starting with Windows 11 version 24H2 and Windows Server 20205.
NTLM is commonly used by businesses and organizations for Windows authentication, as it "does not require a local network connection to a Domain Controller". It is also "the only protocol supported when using a local account" and "works even if you don't know what the target server is".
These benefits have led to some applications and services hardcoding NTLM instead of switching to more modern authentication protocols such as Kerberos. Kerberos provides a better level of security and is more scalable than NTLM. That is why Kerberos is now the preferred default protocol in Windows environments.
The problem is that while businesses can disable NTLM for authentication, those hard-wired applications and services can still have problems. This is why Microsoft has added a number of new authentication features to Kerberos. These changes are being rolled out so that Kerberos will eventually become the sole Windows authentication protocol.
In addition to NTLMv1, another security feature has also been removed on Windows 11 24H2. Microsoft has confirmed that Windows Information Protection (WIP) or enterprise data protection (EDP) is being removed from the Windows environment. This feature was intended to protect against accidental data leaks.
Windows 11 version 21H2 is one of the major original releases of Windows 11 that began rolling out globally on October 4, 2021.
The year 2023 saw Microsoft betting heavily on artificial intelligence and its partnership with OpenAI to make Copilot a reality.
Microsoft introduced Bluetooth LE (low energy) Audio support with Windows 11 22H2 KB5026446 (build 22621.1778), also known as Moment 3, in May 2023.
After keeping things the same for years, the Sticky Note update in mid-2024 changed the game.
Today, Microsoft officially announced the general availability of Windows Server 2025 along with System Center 2025.
There's always something incredibly cool about the nostalgic user interface of 90s versions of Windows.
More than three years ago, when Microsoft announced Windows 11, the operating system immediately caused a lot of controversy.
The October 2024 report provides an overview of Windows 11's market share compared to other versions of Windows.
Microsoft is said to be getting closer to launching its first foldable smartphone when it was granted a patent for a foldable phone with the ability to fold 360 degrees but without creating wrinkles on the screen on October 1.
In a new post on its Tech Community website, Microsoft has announced plans to discontinue WSUS driver synchronization in favor of its latest cloud-based driver services.
Windows Photo Viewer was first released alongside Windows XP and has quickly become one of the most frequently used tools on Windows.
The latest previews of Windows 11 that Microsoft released this week include an improved About section in the Settings app, where users can get more information about the hardware inside their computer.
To address common issues faced by PC gamers, Microsoft has finally made the Windows operating system easier to navigate with an Xbox controller.
The April security updates for Windows 11 silently created a new empty folder on the C drive.
Microsoft has invested billions of dollars in OpenAI since 2019, although the Redmond-based software giant is by no means the primary investor in the innovative AI startup.
Are you getting the “We'll need your current Windows password one last time” error? This annoying pop-up can prevent you from getting things done.
The Unmountable Boot Volume error occurs due to some installed software conflicting with the operating system or due to the computer suddenly shutting down,... In the article below, WebTech360 will guide you through some ways to fix this error.
If you use Clipboard History to store data for later use, there is a small chance that the data will remain empty no matter what you try.
If you don't care about having extra bloatware on your system, there are ways to remove or disable Windows Copilot on Windows 11.
Most laptop users have encountered a situation where Windows shows 2 hours of battery life left, then five minutes later it jumps to 5 hours or even 1 hour. Why does this time jump around like that?
Laptop batteries degrade over time and lose capacity, resulting in less battery life. But after tweaking some deeper Windows 11 settings, you should see a significant improvement in battery life.
Windows 11 version 21H2 is one of the major original releases of Windows 11 that began rolling out globally on October 4, 2021.
The year 2023 saw Microsoft betting heavily on artificial intelligence and its partnership with OpenAI to make Copilot a reality.
You can disable User Accounts so that others can no longer access your computer.
Is the NPU different enough to delay purchase and wait for the PC Copilot+ to become mainstream?
Windows 11's Battery saver mode is a feature designed to extend laptop battery life.
After keeping things the same for years, the Sticky Note update in mid-2024 changed the game.
The IRQL NOT LESS OR EQUAL error is a memory-related error that typically occurs when a system process or driver attempts to access a memory address without proper access permissions.
Paths are the locations of files or folders in Windows 11. All paths include the folders you need to open to get to a specific location.
Windows 11 has officially launched, compared to Windows 10 Windows 11 also has many changes, from the interface to new features. Please follow the details in the article below.
