Re: Disable NetBIOS and NTLM on Windows 2003 Domain Controllers and Exchange 2003?

From: Research Services (key_at_lamar.n0-sp@m.colostate.edu.NO)
Date: 10/05/04 

Date: Tue, 5 Oct 2004 08:56:01 -0600

Thank you all for the information and links.

It appears that Exchange 2000 & Exchange 2003 both rely on and require
NetBIOS enabled to function fully.
Does anyone know if we can tighten down our Domain Controllers and Exchange
boxes to only talk/allow NTLMv2? Or can this negatively affect inter-forest
communication and/or replication?

We found this very useful link that is related to this discussion:

Client, service, and program incompatibilities that may occur when you
modify security settings and user rights assignments
http://support.microsoft.com/default.aspx?scid=kb;en-us;823659

"Andy David - Exchange MVP" <adavid@pleasekeepinngcheesebucket.com> wrote in
message news:vqo3m0d98vpv03a4fbsfamjj2ugek3e3g0@4ax.com...
> You may want to look at this:
> http://support.microsoft.com/default.aspx?scid=837391
>
>
>
> On Mon, 4 Oct 2004 08:25:31 -0600, "Research Services"
> <key@lamar.n0-sp@m.colostate.edu.NO> wrote:
>
>>Is it possible to safely DISABLE NetBIOS and/or NTLMv1/LM on all Windows
>>2000 and Windows 2003 Domain Controllers and/or Exchange 2003 servers
>>(within our own child domain) without affecting Windows networking
>>communications adversely?
>>We are a child domain in a single forest, we are NOT Enterprise
>>Administrators. Our DCs and Exchange are currently configured to refuse
>>and
>>not send LM.
>>All clients are Windows XP with NetBIOS already disabled and only talk
>>NTLMv2, there are no down-level clients (i.e., Win9x, NT4, Mac) in our
>>child
>>domain.
>>We are not sure if this will affect AD replication, especially between
>>other
>>child domains in the forest not controlled by us - OR if Exchange 2003
>>relies on NetBIOS and/or less than NTLMv2 to function correctly.
>>
>>Thanks for any input or help.
>>
>>
>

Relevant Pages

  • Re: Disable NetBIOS and NTLM on Windows 2003 Domain Controllers and Exchange 2003?
    ... Does anyone know if we can tighten down our Domain Controllers and Exchange ... Client, service, and program incompatibilities that may occur when you ... >>without affecting Windows networking ... >>We are a child domain in a single forest, ...
    (microsoft.public.exchange.admin)
  • Re: Disable NetBIOS and NTLM on Windows 2003 Domain Controllers and Exchange 2003?
    ... Does anyone know if we can tighten down our Domain Controllers and Exchange ... Client, service, and program incompatibilities that may occur when you ... >>without affecting Windows networking ... >>We are a child domain in a single forest, ...
    (microsoft.public.windows.server.active_directory)
  • Re: Disable NetBIOS and NTLM on Windows 2003 Domain Controllers and Exchange 2003?
    ... Does anyone know if we can tighten down our Domain Controllers and Exchange ... Client, service, and program incompatibilities that may occur when you ... >>without affecting Windows networking ... >>We are a child domain in a single forest, ...
    (microsoft.public.windows.server.security)
  • Re: best way to recreate a mailbox
    ... >> some changes in PSS recently, so please take advantage of any request to ... I exhausted what I could do by phone and told the client, ... data loss can occur from running utilities against your Exchange ... >>> There is also a problem, likely related, with Backup Exec. ...
    (microsoft.public.windows.server.sbs)
  • Re: AD Site Topology
    ... authenticating with a domain controller in a different physical ... to a GC outside of it's physical location resulting in Outlook ... local infrastrcuture i.e. DC's/F&P but not exchange. ... client side is a good point though although I thought MS improved the ...
    (microsoft.public.win2000.active_directory)
Loading