From ce60c9a690d0dbb9562d6f9c56923ae512995e05 Mon Sep 17 00:00:00 2001
From: Tommy <contact@tommytran.io>
Date: Fri, 26 Apr 2024 01:34:13 -0700
Subject: [PATCH] Disable NTLM

Signed-off-by: Tommy <contact@tommytran.io>
---
 .../Default Domain Policy/Security Options.md                  | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/Group Policies Objects/Default Domain Policy/Security Options.md b/Group Policies Objects/Default Domain Policy/Security Options.md
index 358b02d..c15600b 100644
--- a/Group Policies Objects/Default Domain Policy/Security Options.md	
+++ b/Group Policies Objects/Default Domain Policy/Security Options.md	
@@ -17,6 +17,9 @@ Documentation: https://learn.microsoft.com/en-us/windows/security/application-se
 - Microsoft network server: Digitally sign communications (always) -> Enabled
 - Network access: Allow anonymous SID/Name translation -> Disabled
 - Network security: LDAP client signing requirements: Require signing
+- Network security: Restrict NTLM: Incoming NTLM traffic -> Deny all accounts
+- Network security: Restrict NTLM: NTLM authentication in this domain -> Deny all
+- Network security: Restrict NTLM: Outgoing NTLM traffic to remote servers -> Deny all
 - Shutdown: Clear virtual memory pagefile -> Enabled
 - User Account Control: Allow UIAccess applications to prompt for elevation without using the secure desktop -> Disabled
 - User Account Control: Behavior of the elevation prompt for administrators in Admin Approval Mode -> Prompt for credentials on the secure desktop