Block NTLM (LM, NTLM, NTLMv2)

Supported on: At least Windows Server 2025, Windows 11

Registry

HKLM Software\Policies\Microsoft\Windows\LanmanWorkstation

Value name: BlockNTLM

Enabled: BlockNTLM = 1

Disabled: BlockNTLM = 0

Description

This policy controls if the SMB client will block NTLM for remote connection authentication. If you enable this policy setting, the SMB client won't use NTLM for remote connection authentication. If you disable or do not configure this policy setting, the SMB client can still use NTLM.