16 May,17 at 09:03 PM
Applies to: All supported versions of Centrify Server Suite
Question:
As a result of the WannaCry vulnerability the option of disabling SMBv1 is being considered. What is the impact of disabling SMBv1 with Centrify Server Suite and Centrify Privilege Service?
Answer:
Centrify has tested all products and components that depend on the SMB protocol and found disabling SMBv1 has no impact to either Centify Server Suite or Centrify Privilege Service products.
How to check if SMB1 is enabled:
Open a Windows PowerShell window and run the following cmdlet:
For Windows 2012 and above:
Get-SmbServerConfiguration | Select EnableSMB1Protocol
False Represents Disabled
True Represents Enabled
For 2008 R2 and below:
Microsoft's Best Practice for disabling SMBv1:
https://support.microsoft.com/en-us/help/2696547/how-to-enable-and-disable-smbv1,-smbv2,-and-smbv3-in-windows-vista,-windows-server-2008,-windows-7,-windows-server-2008-r2,-windows-8,-and-windows-server-2012
Centrify Corporation does not take any responsibility for the content or availability of this link and it was provided as a courtesy. Customers should contact the vendor if there are any further questions