Re: NTLM on Native Domain
From: Peter K. (pmkdatabase@yahoo.ca)
Date: 03/31/03
- Next message: Lars Knutsen: "Re: IAS"
- Previous message: Adam: "New user - folders properities"
- In reply to: S. Pidgorny [MVP]: "Re: NTLM on Native Domain"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: Peter K. <pmkdatabase@yahoo.ca> Date: Mon, 31 Mar 2003 18:07:32 +0700
Hi Svyatoslav,
Thanks for the prompt reply.
I will do as suggested, but I am curious - why this statement in the
help docs? Is it an oversimplication? Is it that NTLM is not used in
certains ways that it is in a mixed mode domain, but still used in
others? If so, where can I find out more (either Internet or books?)
Peter
On Mon, 31 Mar 2003 19:46:50 +1000, "S. Pidgorny [MVP]"
<slavickp@yahoo.com> wrote:
>Peter, NTLM is still enabled in native AD mode - and you can't disable it.
>Restrict NTLM use to NTLMv2, use firewalls and IPsec to further restrict
>unauthorised access to your network.
>
>--
>Svyatoslav Pidgorny, MS MVP, MCSE
>-= F1 is the key =-
>
>"Peter K." <pmkdatabase@yahoo.ca> wrote in message
>news:9lqf8v0r1fe70iu83ljti5gvdmhctume04@4ax.com...
>> Hi,
>>
>> I have a native W2K domain. My event log shows many attempted logons
>> every day as follows below. These are not from my users.
>>
>> My understanding of this quote from the help system is that NTLM is
>> now disabled on my DCs.
>>
>> "If you do not have a mixed-mode network, you can disable NTLM
>> authentication by switching to native mode at a domain controller"
Peter
- Next message: Lars Knutsen: "Re: IAS"
- Previous message: Adam: "New user - folders properities"
- In reply to: S. Pidgorny [MVP]: "Re: NTLM on Native Domain"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
