Hi Jeff,

I was wondering when someone would ask about CVE 2021-34527 ("PrintNightmare"). Thanks for bringing it up!

There are no other adverse effects on Laserfiche server applications from disabling Print Spooler that we're aware of aside from the limited exception relating to Laserfiche Snapshot described below. We recommend customers follow Microsoft and CISA guidance to disable the Windows Print Spooler ('spooler') service on all servers that do not need to be running it to address CVE 2021-34527 and reduce attack surface.

Laserfiche Snapshot, being a print driver, has a hard dependency on Spooler. That would only come into play if you had the Snapshot Shared Printer driver installed on a server. If you installed Windows Client with Snapshot on server machines, I advise uninstalling Snapshot prior to disabling Spooler because the Snapshot uninstall process actually fails if Spooler is disabled (it has to de-register the driver).

For end user workstations, Snapshot is a signed printer driver that can only be installed with Administrative rights (enforced via its installer). This information is relevant for Microsoft's PrintNightmare patches and mitigation guidance for machines where disabling Spooler entirely isn't an option.

If remoted into a server with Spooler disabled, you won't be able to print from the web or Windows clients (or anything).

Let me know if you have any follow-up questions.

Cheers,
Sam