Houston Chronicle

What Is NetLogon?

Netlogon is a Windows Server process that authenticates users and other services within a domain. Since it is a service and not an application, Netlogon continuously ...
TWCN Tech News

How to Enable or Disable Debug logging for Netlogon service on Windows 11

In today’s post, we will detail the steps to enable or disable debug logging of the Netlogon service on Windows 11/10 to monitor or troubleshoot authentication, DC locator, account lockout, or other ...
Redmond Magazine

Microsoft Proposes Azure Sentinel Solution for Finding Vulnerable Netlogon Clients

Microsoft engineers outlined a way to find vulnerable Netlogon channel connections for organizations using newer Windows Server systems. These connections will get blocked in February if Netlogon ...
Redmond Magazine

Microsoft Warns IT Pros on Windows Netlogon Fix Coming Next Month

Microsoft on Thursday issued a reminder to organizations to ensure that their systems are properly patched for a "Critical"-rated Windows Netlogon vulnerability before next month's "update Tuesday" ...
CSOonline

Microsoft’s Zerologon vulnerability fix: What admins need to know

Microsoft recently released a patch (CVE-2020-1472) to fix a software issue in the Microsoft Windows Netlogon Remote Protocol (MS-NRPC). As noted on a Secura blog, an unauthenticated attacker with ...
Neowin

Microsoft rolls out third-phase DC hardening for Kerberos and Netlogon security flaw

Yesterday was the second Tuesday of the month and as expected, Microsoft released Patch Tuesday updates on Windows 10 (KB5027215, among others), and Windows 11 (KB5027231). Servers also received Patch ...
Neowin

Microsoft reminds about Windows DC Kerberos Netlogon full enforcement which is coming up

Microsoft has been enforcing hardening across Kerberos and Netlogon protocols, to protect against security vulnerabilities it discovered in 2021. Reminder for the upcoming Full Enforcement is out.
Ars Technica

No NETLOGON folder on Server 2003 DC?

I'm wanting to test some scripts. After doing some reading I learned that my script go in the NETLOGON folder, but I don't have one. This a Server 2003 sp1 DC running ...
Ars Technica

Netlogon service not running on bootup

I'm having an issue on my server where the netlogon service will not automatically run on boot. I get the following error in the System Event Log:<BR><BR>Event ID ...
Dark Reading

One Year Later, a Look Back at Zerologon

Microsoft's Patch Tuesday for August 2020 addressed 120 vulnerabilities, including two zero-days and one elevation-of-privilege flaw in the Netlogon remote protocol that initially flew under the radar ...
MCPmag

CISA: Windows Server Netlogon Now Vulnerable to Attack

A "Critical"-rated Netlogon vulnerability in newer Windows Server versions can now be exploited via publicly accessible code, warned the Cybersecurity and Infrastructure Security Agency (CISA) this ...
Computing

Exploit code for 'Zerologon' bug impacting Windows Netlogon Remote Protocol published on Github

Researchers have released a proof-of-concept (PoC) exploit for 'Zerologon' Windows vulnerability, which, if left unpatched, could allow an attacker with foothold on the local network to instantly ...