Share via

Printing RPC over TCP - disable the encryption

Lilia 1 Reputation point
2022-12-20T15:35:50.8+00:00

Hi, is there a way to disable the encryption when Windows client prints using the RPC over TCP (recent enforcement of Win11)?
Domain policy or any other direction?

Thanks

Windows for business Windows Server User experience Print jobs
Windows for business Windows Client for IT Pros User experience Other
0 comments

2 answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. Limitless Technology 44,751 Reputation points
    2022-12-21T09:17:47.313+00:00

    Hi,

    Thank you for posting your query.

    Kindly follow the steps provided below to resolve your issue.

    A security bypass vulnerability exists in the way the Printer Remote Procedure Call (RPC) binding handles authentication for the remote Winspool interface. The Windows update addresses this vulnerability by increasing the RPC authentication level and introducing a new policy and registry key to allow customers to disable or enable Enforcement mode on the server-side to increase the authentication level.

    Go to this link for your reference and other troubleshooting procedures https://support.microsoft.com/en-us/topic/managing-deployment-of-printer-rpc-binding-changes-for-cve-2021-1678-kb4599464-12a69652-30b9-3d61-d9f7-7201623a8b25

    Do not hesitate to message us if you need further assistance.

    If the answer is helpful kindly click "Accept as Answer" and up vote it.

    0 comments
  2. Lilia 1 Reputation point
    2022-12-22T13:27:45.257+00:00

    The steps in the link do not resolve my issue. The question is not how to disable the new policy, but how to make it non encrypted,
    that is disable RPC level Privacy, and downgrade it to just Integrity.

    The question is a bit specific, please forward me to the appropriate forum if available.

    0 comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.