Knowledge Base FAQ Item #7250070
Q7250070: Is there a way to bypass the DCOM hardening changes that forces RPC_C_AUTHN_LEVEL_PKT_INTEGRITY authentication? We're using WMI through DCOM.
Yes you can. First of all, you need to make sure you have the September 2021 patches or later installed.
Registry setting to enable or disable the hardening changes for CVE-2021-26414, you can use the following registry key:
- Path : HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Ole\AppCompat
- Value Name: "RequireIntegrityActivationAuthenticationLevel"
- Type: dword
- Value Data: default = 0x00000000 means disabled. 0x00000001 means enabled. If this value is not defined, it will default to enabled.
To read more, please see: KB5004442—Manage changes for Windows DCOM Server Security Feature Bypass (CVE-2021-26414).
(viewed: 694)