Microsoft shares DCOM, Kerberos, Netlogon, Azure hardening timeline till 2024

Microsoft has been making hardening changes to several protocols over the last couple of years. These are being put in place to combat security vulnerabilities that were discovered recently. Earlier this year in February, Microsoft made DCOM hardening mandatory. Later in March, the tech giant shared additional resources to facilitate. Soon after, the company reminded IT admins and system admins about the third-phase of Kerberos hardening.

In order to remind IT administrators about upcoming changes to be made, the tech giant generally publishes updates to its support article. Today, the company has shared a helpful roadmap that outlines all the upcoming hardening changes all the way up to 2024. They also link back to the corresponding knowledge base (KB) support articles where users can learn more about the changes.

Hardening changes by month

Consult the details for all upcoming hardening changes by month to help you plan for each phase and final enforcement.

April 2023

June 2023

July 2023

October 2023

November 2023

• Certificate-based authentication KB5014754 | Phase 3
  Final, full enforcement.

January 2024

• Active Directory (AD) permissions issue KB5008383 | Phase 5
  Final enforcement.

The blog post was penned by Namrata Bachwani, who is a Principal Program Manager Lead at Microsoft. You can find it here.