"Pre-Windows 2000 Compatible Access" group question w/ Exchange 2003
Posted on 2006-07-20
I'm running DomainPrep in preparing to install Exchange 2003 server. I have just been following the deployment tools checklist to install it. Anyway, I got this message:
The domain has been identified as an insecure domain for mail-enabled groups with hidden DL membership. Hidden DL membership will be exposed to members of the built-in "Pre-Windows 2000 Compatible Access" security group. This group may have been populated during the promotion of the domain with intent of allowing permissions to be compatible with pre-Windows 2000 servers and application. To secure the domain, remove any unnecessary members from this group.
I checked the group in question, and there is one member: Authenticated Users with AD folder in NT Authority. Is it OK to have there, or do I need to remove it? What is it?