Re: GPO for trusted root CA certs
- From: Michael Ströder <michael@xxxxxxxxxxxx>
- Date: Fri, 10 Nov 2006 00:05:33 +0100
Brian Delaney [MSFT] wrote:
Michael Ströder wrote:
And how about protection of the network transport of GPO?
Are you referring to the application of a GPO over the network or
modifying?
Application of a GPO over the network.
As far as I know by default all that is done to secure both is
SMB signing is required on Windows Server 2003 SP1 (possibly RTM as well)
and can be set to required on Windows 2000. SMB signing helps to prevent
an SMB session from being highjacked once established.
With which key is SMB signed?
With the server's RSA key from its server certificate?
Ciao, Michael.
.
- Follow-Ups:
- Re: GPO for trusted root CA certs
- From: Brian Delaney [MSFT]
- Re: GPO for trusted root CA certs
- References:
- GPO for trusted root CA certs
- From: Michael Ströder
- RE: GPO for trusted root CA certs
- From: Brian Delaney [MSFT]
- GPO for trusted root CA certs
- Prev by Date: Re: Basic Sec Template Design
- Next by Date: Re: GPO for trusted root CA certs
- Previous by thread: Re: GPO for trusted root CA certs
- Next by thread: Re: GPO for trusted root CA certs
- Index(es):
Relevant Pages
|
