Initial IPSEC policy
From: Harald Haitsma (haraldhaitsma_at_hotmail.com)
Date: 01/27/04
- Next message: Rich Roller: "Re: Domain Controller Security Policy vs. Domain Security Policy"
- Previous message: Rich Roller: "Re: SID Filtering vs. SIDhistory"
- Next in thread: Chris: "Re: Initial IPSEC policy"
- Reply: Chris: "Re: Initial IPSEC policy"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Tue, 27 Jan 2004 20:44:28 +0100
I Have a Win2003 Domain with only WinXP clients.
On a Win2000 Server i read following:
Using IP Security (IPSec) to protect traffic from a non-domain member to the
domain controller is currently not supported in Windows 2000 because it is
not possible for non-domain computers to get the initial IPSec policy from
the domain controller once a domain controller (DC) requires IPSec to
communicate, and because non-domain member computers cannot use Kerberos as
the IPSec/IKE authentication method to authenticate IKE with their domain
controller and with trusted domain controllers on the domain in all cases.
Is this changed within XP and 2003?
Thxs
- Next message: Rich Roller: "Re: Domain Controller Security Policy vs. Domain Security Policy"
- Previous message: Rich Roller: "Re: SID Filtering vs. SIDhistory"
- Next in thread: Chris: "Re: Initial IPSEC policy"
- Reply: Chris: "Re: Initial IPSEC policy"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
