ad-assurance - [AD-Assurance] NTLMv2 and Kerberos with RC4-HMAC

Subject: Meeting the InCommon Assurance profile criteria using Active Directory

List archive

[AD-Assurance] NTLMv2 and Kerberos with RC4-HMAC

From: David Walker <>
To: InCommon AD Assurance Group <>
Cc: DHW <>
Subject: [AD-Assurance] NTLMv2 and Kerberos with RC4-HMAC
Date: Fri, 17 May 2013 17:43:51 -0700
Authentication-results: sfpop-ironport03.merit.edu; dkim=pass (signature verified)

I went through the relevant IAP sections to determine which need an Alternative means statement for NTLMv2 and Kerberos with RC4-HMAC. What I came up with is that none do. See:

https://spaces.internet2.edu/x/hAlOAg

for a discussion and the warnings we agreed to provide about the use of those protocols.

Please look this over carefully and shoot me down; I'm probably suffering from late-Friday-afternoon muddled thinking.

David

[AD-Assurance] NTLMv2 and Kerberos with RC4-HMAC, David Walker, 05/17/2013
- RE: [AD-Assurance] NTLMv2 and Kerberos with RC4-HMAC, Brian Arkills, 05/20/2013
  - Re: [AD-Assurance] NTLMv2 and Kerberos with RC4-HMAC, David Walker, 05/20/2013
    - Re: [AD-Assurance] NTLMv2 and Kerberos with RC4-HMAC, David Walker, 05/20/2013
      - RE: [AD-Assurance] NTLMv2 and Kerberos with RC4-HMAC, Eric Goodman, 05/20/2013
        
        Re: [AD-Assurance] NTLMv2 and Kerberos with RC4-HMAC, David Walker, 05/20/2013
        
        RE: [AD-Assurance] NTLMv2 and Kerberos with RC4-HMAC, Michael W. Brogan, 05/20/2013
  - RE: [AD-Assurance] NTLMv2 and Kerberos with RC4-HMAC, Capehart,Jeffrey D, 05/20/2013
    - Re: [AD-Assurance] NTLMv2 and Kerberos with RC4-HMAC, David Walker, 05/20/2013
      - RE: [AD-Assurance] NTLMv2 and Kerberos with RC4-HMAC, Capehart,Jeffrey D, 05/20/2013

List archive

[AD-Assurance] NTLMv2 and Kerberos with RC4-HMAC