Re: IPSec to encrypt SMB traffic?
From: Steve Clark [MSFT] (bogus_at_microsoft.com)
Date: 01/17/05
- Next message: Andre: "Lose user settings when PC Reboot's or user logs off"
- Previous message: TJM: "Remote Desktop thru VPN and Network Security"
- In reply to: Research Services: "IPSec to encrypt SMB traffic?"
- Next in thread: Research Services: "Re: IPSec to encrypt SMB traffic?"
- Reply: Research Services: "Re: IPSec to encrypt SMB traffic?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Mon, 17 Jan 2005 11:53:22 -0800
Do you require encryption of this traffic, or just authentication?
You can use IPsec transport mode to secure communications such that any
machine that can not AuthN with IKE will be unable to communicate. This
means that a user will never get prompted for credentials since IKE fails.
"Research Services" <key@lamar.n0-sp@m.colostate.edu.NO> wrote in message
news:uWsyCHp%23EHA.3236@TK2MSFTNGP15.phx.gbl...
>
> Are there any MS KB articles or whitepapers that detail how to use IPSec
> to encrypt SMB traffic?
>
> We are in an Active Directory Forest, and would like to use Group Policy
> to configure IPSec to encrypt SMB traffic between all of our Windows XP
> clients and our Windows 2003 File Servers (using Kerberos). Is it
> possible to set this up so _only_ TCP 445 on _particular_ servers will
> always be encrypted when communicating with our XP clients?
> We are not currently using IPSec and would like to enable encryption for
> ONLY the case mentioned above if possible.
>
> Thanks for any information.
>
>
- Next message: Andre: "Lose user settings when PC Reboot's or user logs off"
- Previous message: TJM: "Remote Desktop thru VPN and Network Security"
- In reply to: Research Services: "IPSec to encrypt SMB traffic?"
- Next in thread: Research Services: "Re: IPSec to encrypt SMB traffic?"
- Reply: Research Services: "Re: IPSec to encrypt SMB traffic?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
