Microsoft to Kill RC4 in Kerberos by 2026 - GovInfoSecurity

Microsoft is disabling RC4 by default in Windows Kerberos by mid-2026, moving to stronger AES-SHA1 encryption to enhance security. This change impacts user and service authentication across networks, requiring organizations to address lingering dependencies on the outdated cryptographic cipher.