Solved

Kerberos UDP to TCP reg switch?

Posted on 2008-10-17
2
911 Views
Last Modified: 2008-11-23
I have a Domain Controller in another country that is connected to our Forest through a VPN Tunnel.

According to the Net guys their is lots of fragmentation due to going through multiple switches, TAC's exc.
I was told to change the Kerberos from UDP to TCP in the registry of our Domain Controllers

I understand basic concepts of UDP and TCP however, I don't know what unforseen issues Kerberos will have through the switch.

Can someone send me a link explaining the best practice for this change or at least a good site explaining how TCP/Kerberos works?
0
Comment
Question by:snyderkv
2 Comments
 

Author Comment

by:snyderkv
ID: 22747443
A more important question is if we do end up needing this will I have to enable it via a GPolicy template on DC's only or all member servers? What if a DC does not have it will it still communicate?
0
 
LVL 38

Accepted Solution

by:
ChiefIT earned 500 total points
ID: 22756166
Well, what do you think of this article?
http://support.microsoft.com/kb/244474
0

Featured Post

Optimizing Cloud Backup for Low Bandwidth

With cloud storage prices going down a growing number of SMBs start to use it for backup storage. Unfortunately, business data volume rarely fits the average Internet speed. This article provides an overview of main Internet speed challenges and reveals backup best practices.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Mapping Drives using Group policy preferences Are you still using old scripts to map your network drives if so this article will show you how to get away for old scripts and move toward Group Policy Preference for mapping them. First things f…
Introduction You may have a need to setup a group of users to allow local administrative access on workstations.  In a domain environment this can easily be achieved with Restricted Groups and Group Policies. This article will demonstrate how to…
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…
This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …

911 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

22 Experts available now in Live!

Get 1:1 Help Now