Re: Cannot migrate a Windows XP station from a W2K domain to a W2K3 domain
From: b. Lienard (parano007_at_hotmail.com)
Date: 04/03/04
- Previous message: Tom: "Re: NT4 > Win 2003 Server"
- In reply to: William Wang[MSFT]: "Re: Cannot migrate a Windows XP station from a W2K domain to a W2K3 domain"
- Next in thread: William Wang[MSFT]: "Re: Cannot migrate a Windows XP station from a W2K domain to a W2K3 domain"
- Reply: William Wang[MSFT]: "Re: Cannot migrate a Windows XP station from a W2K domain to a W2K3 domain"
- Messages sorted by: [ date ] [ thread ]
Date: 3 Apr 2004 10:09:10 -0800
Thanks William,
Because my work load is very high, as previously, when I'm able to
test that I put a feedback.
Best regards,
Bruno Lienard
v-rxwang@online.microsoft.com (William Wang[MSFT]) wrote in message news:<sY8K#7yFEHA.608@cpmsftngxa06.phx.gbl>...
> Hi Lienard,
>
> You may also want to try the following steps which helped a customer
> resolve the similar issue:
>
> 1. In the Domain Controller Security policy on the server, expand Local
> Policies.
> 2. Click on Security Options and set Network Security: LAN Manager
> Authentication to "Send LM and NTLM - use NTLMv2 session security if
> negotiated." Click OK to make the change.
> 3. Run gpudate /force at a command prompt.
> 4. In Start | Run, type "regedt32". Go to the following key:
>
> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\lanmanserver\parameters
>
> Make sure the following values are set :
>
> Enablesecuritysignature = 1
> requiresecuritysignature = 0
>
> 5. Still in Regedt go to the following key:
>
> HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Lsa.
>
> Set the following value:
>
> Incompatibility level = 2
> 6. On the client machines go to the following keys and make sure the
> following values are set correctly:
>
> HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Lsa
>
> restrictanonymoussam [REG_DWORD] = 0x1
>
>
> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\lanmanworkstation\param
> eters
>
> enablesecuritysignature [REG_DWORD] = 0x1
> requiresecuritysignature [REG_DWORD] = 0x0
>
> 7. On the client go to Start | Programs | Administrative Tools | Local
> Security Policy.
> 8. Expand Local Policies and click on Security Options. Check the
> setting for the following three options:
>
> Domain member: Digitally encrypt or sign secure channel data (always) set
> to enabled
> Domain member: Digitally encrypt secure channel data (when possible) set to
> enabled
> Domain member: Digitally sign secure channel data (when possible) set to
> enabled
>
> 9. Reboot the workstation.
> 10. Join the domain.
>
> Please don't hesitate to let us know if this resolves your problem or if
> you need further assistance.
>
> Sincerely,
>
> William Wang
> Microsoft Online Support Engineer
>
> Get Secure! - www.microsoft.com/security
> =====================================================
> When responding to posts, please "Reply to Group" via
> your newsreader so that others may learn and benefit
> from your issue.
> =====================================================
>
- Previous message: Tom: "Re: NT4 > Win 2003 Server"
- In reply to: William Wang[MSFT]: "Re: Cannot migrate a Windows XP station from a W2K domain to a W2K3 domain"
- Next in thread: William Wang[MSFT]: "Re: Cannot migrate a Windows XP station from a W2K domain to a W2K3 domain"
- Reply: William Wang[MSFT]: "Re: Cannot migrate a Windows XP station from a W2K domain to a W2K3 domain"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
