Kerberos UDP to TCP reg switch?

I have a Domain Controller in another country that is connected to our Forest through a VPN Tunnel.

According to the Net guys their is lots of fragmentation due to going through multiple switches, TAC's exc.
I was told to change the Kerberos from UDP to TCP in the registry of our Domain Controllers

I understand basic concepts of UDP and TCP however, I don't know what unforseen issues Kerberos will have through the switch.

Can someone send me a link explaining the best practice for this change or at least a good site explaining how TCP/Kerberos works?
snyderkvAsked:
Who is Participating?

[Webinar] Streamline your web hosting managementRegister Today

x
 
ChiefITConnect With a Mentor Commented:
Well, what do you think of this article?
http://support.microsoft.com/kb/244474
0
 
snyderkvAuthor Commented:
A more important question is if we do end up needing this will I have to enable it via a GPolicy template on DC's only or all member servers? What if a DC does not have it will it still communicate?
0
All Courses

From novice to tech pro — start learning today.