ActiveXperts Knowledge Base Article 7250070

Q7250070 - Is there a way to bypass the DCOM hardening changes that forces RPC_C_AUTHN_LEVEL_PKT_INTEGRITY authentication? We're using WMI through DCOM.

Yes you can. First of all, you need to make sure you have the September 2021 patches or later installed.

Registry setting to enable or disable the hardening changes for CVE-2021-26414, you can use the following registry key:

• Path : HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Ole\AppCompat
• Value Name: "RequireIntegrityActivationAuthenticationLevel"
• Type: dword
• Value Data: default = 0x00000000 means disabled. 0x00000001 means enabled. If this value is not defined, it will default to enabled.

To read more, please see: KB5004442—Manage changes for Windows DCOM Server Security Feature Bypass (CVE-2021-26414).

---

Contact Support

If you cannot find an answer to your question(s) in our Knowledge Base, or if you need additional information or assistance, please contact our Customer Support using the Contact Support form:
Contact Support »