Windows 7 and Windows Server 2008 R2 introduce a long sought feature known as NTLM blocking. This prevents NTLM from being used for authentication. IT works in both a send or receive mode, and allows you to create exceptions. This post talk about some techniques you can use to start evaluating if NTLM blocking’ll work for your network. Through the use of auditing techniques and application analysis, its possible to correctly outline all NTLM use in an environment. This’s a critical phase to complete before attempting to block NTLM – if you just start blocking arbitrarily you’ll likely have applications that stop working. The key to rolling out NTLM blocking is that you must be systematic and take your time.
Full Article: Directory Services