Recent Searches

No recent searches

    Popular Articles

      Articles
      View all
        Topics
        View all
          Tickets
          View all
            no results

            Sorry! nothing found for

            Print Nightmare Cheat Sheet

            Modified on Tue, 15 Feb, 2022 at 8:59 AM

            Details here:

            https://support.microsoft.com/en-us/topic/managing-deployment-of-printer-rpc-binding-changes-for-cve-2021-1678-kb4599464-12a69652-30b9-3d61-d9f7-7201623a8b25


            Tested with Server Cumulative Update December 2021. 


            Disable print spooler on all servers where it is unnecessary.


            Push out Point and Print settings to all machines via GPO (change FQDNs and add another other print servers or clients hosting printers for your environment):


            Make sure "Do not show warning or elevation prompt" is enabled on the Point and Print Restrictions policy.


            On the client and print server enable Enforcement Mode:


            HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Print

            1. Right-click Print, choose New, and then click DWORD VALUE (32-bit) Value.

            2. Type RpcAuthnLevelPrivacyEnabled and then press Enter.

            3. Right-click RpcAuthnLevelPrivacyEnabled and then click Modify.

            4. In the Value data box, type 1 and then click Ok.


            If you have trouble printing, try setting the above value to 0 however, you are less protected from PrintNightmare in this case.

            Was this article helpful?

            That’s Great!

            Thank you for your feedback

            Sorry! We couldn't be helpful

            Thank you for your feedback

            Let us know how can we improve this article!

            Select at least one of the reasons
            CAPTCHA verification is required.

            Feedback sent

            We appreciate your effort and will try to fix the article

            Preview
            0 of 0