Microsoft to Phase Out NTLM in Favor of Kerberos for Stronger Authentication
Microsoft to Phase Out NTLM in Favor of Kerberos for Stronger Authentication
16 October 2023
NTLM, which has been used as a fallback mechanism, relies on a three-way handshake and password hashing, while Kerberos uses a two-part process and encryption. NTLM has security weaknesses and is vulnerable to relay attacks.