Reply to post: Builtin\Pre-Windows 2000 Compatible Access

PrintNightmare: Kicking users from Pre-Windows 2000 legacy group may thwart domain controller exploitation

gerdesj Silver badge
Windows

Builtin\Pre-Windows 2000 Compatible Access

Well, I've looked at four domains so far and all have different memberships for that group! All bar one has Authenticated Users in it.

Let's see what happens! Incidentally Builtin\Users needs authenticated users in it or AD certificates don't mint anywhere apart from the box with the CA on it. So, give it a go but you'll need to really look deep for problems.

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Biting the hand that feeds IT © 1998–2021