Re: Native Mode and Win9x/NT Clients Authentication
From: Fred Yarbrough (fyarbrou@yahoo.com)
Date: 07/27/02
- Next message: Tom Bigford: "webcomp.exe"
- Previous message: karl [x y]: "Re: Cannot login after restoring backup, it keeps repeating the login process without giving an error or error number."
- In reply to: Fred Yarbrough: "Native Mode and Win9x/NT Clients Authentication"
- Next in thread: Laura A. Robinson: "Re: Native Mode and Win9x/NT Clients Authentication"
- Reply: Laura A. Robinson: "Re: Native Mode and Win9x/NT Clients Authentication"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: "Fred Yarbrough" <fyarbrou@yahoo.com> Date: Fri, 26 Jul 2002 21:49:57 -0500
Thanks for all of your inputs. I guess that I got confused in the original
article that I found on the GIAC.org site that said
"Keep in mind that NTLM is not available in Native mode. "
>From what you are saying and what I have read now elsewhere, NTLM IS
supported in Native mode, it is just not the prefered authentication method.
Thanks,
Fred
"Fred Yarbrough" <fyarbrou@yahoo.com> wrote in message
news:uGq0ZOQNCHA.1700@tkmsftngp09...
>
> I have been searching all over the Internet and still have not found an
> exact answer. I know that once all of your NT 4 DC's have been converted
to
> Windows 2000 you can then switch to Native mode. Windows 2000 Pro clients
> will authenticate using Kerberos. How will Windows 9x/NT clients
> authenticate? Will they use the NTLM and authenticate against the PDC
> Emulator or do you have to load some piece of software on them to make
them
> Kerberos aware? I am finding bits and pieces of info but nothing that
says
> it all in one area. One document that I have seen at
> http://www.giac.org/practical/Deirdre_Perkins-Moore_gcnt.doc states the
> following:
>
> Windows 2000 supports NTLM logon (same as NT4), Kerberos logon, smart card
> logon, or certificate mapping such as LDAP. Keep in mind that NTLM is not
> available in Native mode. There is Kerberos support for other clients
such
> as Win98, but this requires that you install the Directory Services
client.
>
> Is this correct about there not being NTLM in Native mode? I thought that
> the PDC Emulator would have provided this for backward compatibility. I
am
> not too wild about going out to our 2500 clients to load a Directory
> Services client unless I have to. What's your take on how clients
> authenticate when switching to Native mode????
>
>
> Thanks,
> Fred
>
>
- Next message: Tom Bigford: "webcomp.exe"
- Previous message: karl [x y]: "Re: Cannot login after restoring backup, it keeps repeating the login process without giving an error or error number."
- In reply to: Fred Yarbrough: "Native Mode and Win9x/NT Clients Authentication"
- Next in thread: Laura A. Robinson: "Re: Native Mode and Win9x/NT Clients Authentication"
- Reply: Laura A. Robinson: "Re: Native Mode and Win9x/NT Clients Authentication"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
