Introduction
This article describes the potential impact of disabling RC4 in Active Directory (AD). When enforcement mode is enabled, older encryption types such as RC4-HMAC-MD5 are no longer allowed for authentication. It explains whether this change affects the Mendix platform or Mendix applications that use modern authentication (OAuth 2.0) with app registrations for the Microsoft/Azure AD Connector.
Environment
Mendix SSO
Details
The RC4 encryption disablement in Active Directory has no impact on the Mendix SSO.
- Mendix uses OAuth 2.0 / OpenID Connect (OIDC) over HTTPS for authentication, which is independent of Kerberos RC4 encryption.
- No configuration changes or actions are required from the Mendix side.
Internal information related
- 282914
- C8JKAC5FF/p1783673730105189
Additional information
NA
0 Comments