ADV-2025-005 - Urgent Action Required for Netwrix GroupID 10 SR2 and Earlier

netwrix-product-security · March 3, 2025, 4:00pm

Executive Summary

Customers operating GroupID versions earlier than 10.0.7784.0 Patch 373364-B may experience a disruption in GroupID’s integrations with Microsoft’s Entra ID (formerly Azure AD) and Office 365 unless you take action to prevent it. Microsoft has announced a plan to enforce multi-factor authentication requirements for all users accessing Microsoft Azure services in early 2025, including Entra ID and Office 365. Older versions of GroupID make use of a legacy user-based integration that is incompatible with a requirement for multi-factor authentication. GroupID 11 is unaffected.

Solution

An patch for GroupID 10 SR2 has been released which introduces support for modern workload identities which conform with Microsoft’s best practices for application integrations and will not be affected by Microsoft’s plan to require multifactor authentication for all user access. All Netwrix GroupID customers running an affected version are advised to update GroupID to version 10.0.7784.0 Patch 373364-B or later as soon as possible.

Documentation on this patch is available in the helpcenter. Please contact the Netwrix technical support team should you need assistance.

Official Fixes

Updated software has been released containing official fixes as indicated in the table below.

Product	Release Version
Netwrix GroupID	10.0.7784.0 Patch 373364-B

FAQ

How do I determine the current version of Netwrix GroupID?

If you are operating Netwrix GroupID v10, the version number is displayed in the Netwrix GroupID MMC Help tab and in the footer of the Netwrix GroupID Self Service or Password Center Portals.

If you are operating Netwrix GroupID v11, the version number is displayed in the profile drop down in the Netwrix GroupID Admin Center and Portal.

Revisions

Updates to this advisory may be made as necessary. Information about each change will be published in the table below.

Revision	Date	Description
1	2025-03-03T16:00:00Z	First published

Disclaimer

The information and materials included in or linked to this Security Advisory are provided on an “as-is” basis and without warranty of any kind, and we disclaim all representations and warranties of any kind, whether express or implied, including warranties of merchantability and fitness for a particular use. You acknowledge and agree that your use of the information and materials included in or linked to this Security Advisory are at your own risk.

Topic	Replies	Views
ADV-2025-004 - Use of Hard-coded Encryption Key in Netwrix GroupID Security Advisories security-advisory	68	February 20, 2025
ADV-2025-006 - Vulnerabilities in Netwrix Recovery for Active Directory (formerly StealthRECOVER) Security Advisories security-advisory	16	March 3, 2025
ADV-2023-003 - Sensitive Data Exposure in Netwrix Auditor Security Advisories security-advisory	20	August 8, 2023
ADV-2024-006 - Vulnerabilities in Netwrix Threat Manager Security Advisories security-advisory	18	October 17, 2024
ADV-2025-003 - Exposure of Sensitive Information to an Unauthorized Actor in Netwrix Privilege Secure Security Advisories security-advisory	31	February 6, 2025