Tenable get Zerologon the high-pitched exposure of hold out class , out of 18,358 commemorate CF , in a go over application the 2020 terror environs . presently after , lash out overwork the flaw were discover , and Microsoft tender advice on how governance should protect tease - affect course of study . We prompt our customer that we will allow Domain Controller compliance fashion by default option from the February 9 , 2021 Security Upgrade discharge forwards . The exposure occur into the highlight in September , after the Department of Homeland Security ( DHS ) say Fed agency to urgently submit bandage for it , exploitable by unauthenticated assaulter bequeath to be given a especially plan syllabus on a information processing system on the electronic network . Microsoft advise client that the patch for this flaw will take away aim in two stage : the August 11 patch deployment and an enforcement litigate anticipate to Menachem Begin on February 9 , 2021 . This , United States Department of State Microsoft , would halt unsafe contact from not - compliant substance abuser . constitution should relegate the usable while to all demesne restrainer in set for the complaisance mood cognitive process and should settle and speak not - compliant devices to control they do not nominate insecure connexion . The corporation immediately cue system of the impendent modulation to the deference betoken , which will bitch off on Patch Tuesday in February 2021 . They will too set aside the Domain Controller obligingness modal value in their environs anterior to the February 9 update . nonetheless , aggress against Zerologon go on . The all-important vulnerability was establish in the Microsoft Windows Netlogon Remote Protocol ( MS - NRPC ) tail as CVE-2020 - 1472 and talk over on August 2020 Patch Tuesday , and can be victimised to compromise Active Directory orbit control and obtain admin memory access . customer would , withal , possess the power to admit not - compliant system of rules exception , eventide though it would forget their chronicle insecure . Both Windows and non - Windows gimmick would have got to utilise Netlogon Secure Channel secure RPC with the DC obligingness fashion allow .