Microsoft Enforcement Mode

Rowland Penny rpenny at
Sat Jan 29 11:49:57 UTC 2022

On Sat, 2022-01-29 at 11:41 +0100, Stefan Kania via samba-technical
> I just read, that Microsoft uses a new Enforcement Mode on all MS DCs
> to
> protect the DC against CVE-2021-42287 and CVE-2021-42278. The
> Enforcement Mode can be deactivated until June, then MS will force it
> on
> all DCs.
> But with this mode active it's no longer possible to join a Linux-
> Client
> to a MS-Domain. I could not find out if this will affect Samba or
> only
> SSSD. If it affect Samba will it affect all Samba-version?

I think this is Samba CVE-2020-25719


More information about the samba-technical mailing list