Symantec Access Management

  • 1.  Microsoft fix MS15-027 and issues with NTLM auth

    Posted Mar 13, 2015 11:54 AM


    We have been notified of an issue with Microsoft security update MS15-027 which may cause data to be unavailable to SMB clients that authenticate to
    Active Directory through the NTLM authentication protocol.

     

    SMB/SMB2/SMB3 clients may experience login failures when authenticating through Microsoft AD and the NT LAN Manager Security Support Provider (NTLMSSP).  Authentication failures may affect clients attempting to access data through HTTP-based protocols.

     

    Is CA aware of any issues for users accessing Siteminder sites protected by the Windows Authentication scheme?



  • 2.  Re: Microsoft fix MS15-027 and issues with NTLM auth

    Posted Mar 17, 2015 02:06 AM

    Hi,

     

    From microsoft announcement, it seems the spoofing mainly on the Windows and AD and I didn't see how this will affect Siteminder.

     

    Microsoft Security Bulletin MS15-027 - Important

     

     

    Is CA aware of any issues for users accessing Siteminder sites protected by the Windows Authentication scheme?

    R: No issue reported related to the Microsoft security fix.

     

    If you experience any issue that related to the security fix, please report to CA.



  • 3.  Re: Microsoft fix MS15-027 and issues with NTLM auth
    Best Answer

    Posted Mar 18, 2015 03:54 PM

    Just joined to thank you for your posting. Although not currently using CA, I was struggling to figure out why users were suddenly unable to authenticate through the domain to a certain folder or in-house website. Removing this patch and the v2 patch resolved the issue.