Re: DOS CLIENT ACCESS IN SERVER 2003
- From: "Roger Simpkins" <roger_simpkins@xxxxxxxxxxx>
- Date: Wed, 18 Jun 2008 22:36:40 -0600
I just wanted to follow up and thank you for your help. I finally convinced the powers at be to go with another solution. For the mean time, I have setup a member server and that seems to work just fine for now.
Again, thanks.
Roger
"Meinolf Weber" <meiweb(nospam)@gmx.de> wrote in message news:ff16fb669d8348ca8e5bd0860c30@xxxxxxxxxxxxxxxxxxxxxxx
Hello Roger,.
No other way, except you get another software solution. But you should really NOT lower down the security.
If you have the option to move the data to a member server you can create a local account on this and use that account for connecting. On the DC disable SMB signing at first step and try again.
If this not helps, you have to additional changes:
Change the following in the Default Domain Controller Security Settings
- Domain Member: Digitally encrypt or sign secure channel data (always) - Disable - Microsoft network server: Digitally sign communication (always) - Disable - Network security: Do not store LAN Manager hash value on next password change - Disable , Important for this setting is that all user passwords have to be reset, to recreate also the hash value
- Network security: LAN Manager Authentication level - Send LM & NTLM - use NTLM version 2 session security if negotiated
Also see here about security settings:
http://support.microsoft.com/kb/823659
Best regards
Meinolf Weber
Disclaimer: This posting is provided "AS IS" with no warranties, and confers no rights.
** Please do NOT email, only reply to Newsgroups
** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm
Apologies for the dual posting (I know better) and thanks for your
help. To answer your question, no, I don't really want to lower the
security level unless there is no other way to accomplish this
however, I need to have these DOS clients able to access this server.
Luckily this server is inside our firewall and not connected to the
outside world in any way. If you know how to do this (or a word
around), I would love to hear it.
Again, thank you for your reply and any help you may be able to give
me on this issue.
Roger
"Meinolf Weber" <meiweb(nospam)@gmx.de> wrote in message
news:ff16fb669d6478ca8dec414bb7dc@xxxxxxxxxxxxxxxxxxxxxxx
Hello Roger,
If you like to lower the security level in your 2003 domain, you can
do it, but is that really what you like?
Best regards
Meinolf Weber
Disclaimer: This posting is provided "AS IS" with no warranties, and
confers no rights.
** Please do NOT email, only reply to Newsgroups
** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm
We got rid of all of our NT 4.0 domain controllers last year
(finally), and now my customer decided he needs to have several DOS
clients access server shares in our current environment.
Is there any way to enable DOS CLIENT access on a Windows Server
2003 configured as a PDC _AFTER_ AD has been installed without
pre-windows 2000 compatible permissions? I tried adding ANONYMOUS
and EVERYONE access in the pre-windows 2000 group but that didn't do
the trick.
Thanks in advance for any help.
Roger
- Prev by Date: RE: Cannot perform any windows update neither install any feature or r
- Next by Date: RE: Cannot perform any windows update neither install any feature
- Previous by thread: RE: Cannot perform any windows update neither install any feature or r
- Next by thread: upgrading 2003 standard to 2003 enterprise
- Index(es):
Relevant Pages
|
