[Okta Webinar] Learn how to a build a cloud-first strategyRegister Now

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 4111
  • Last Modified:

NetBios on Domain Controller

What would be effect of disabling netbios over TCP/IP on my domain Controller running windows 2003
I have WINS installed and configuered
I have DNS installed and configuered
This is my PDC having Master Browser
0
Sarang Tinguria
Asked:
Sarang Tinguria
  • 5
  • 3
  • 3
  • +2
3 Solutions
 
Justin YeungCommented:
http://windowsdevcenter.com/pub/a/windows/2004/05/11/netbios.html

it is really depends on how many legacy is running in your environment.
0
 
Mike KlineCommented:
Is WINS on the DC or another box?

Thanks

Mike
0
 
btetlow-expertCommented:
I have done just this --- As long as you're not using legacy OS on any systems, then you will likely have no ill effects.   I turned mine off and didn't even say anything.... Only my Server 2000 system was unhappy, and it was resolved another way.

One other consideration is if you have setup a WINS server..... it will become potentially deaf .   Maybe that's good, may be not....    

I've turned it off on all systems that could tolerate it ---  A positive to it's removal is that it removed a certain virus exposure (conficker).

You can easily turn it back on if you find there's an impact that can't be otherwise resolved.
0
Efficient way to get backups off site to Azure

This user guide provides instructions on how to deploy and configure both a StoneFly Scale Out NAS Enterprise Cloud Drive virtual machine and Veeam Cloud Connect in the Microsoft Azure Cloud.

 
Sarang TinguriaSr EngineerAuthor Commented:
What would if I have 1 DC 2003 and 50 XP clients 1 Scanner and 1 Printer
0
 
Sarang TinguriaSr EngineerAuthor Commented:
Mike:- WINS is on DC itself
0
 
Mike KlineCommented:
also do you have any trusts, good article from Mitch   http://windowsdevcenter.com/pub/a/windows/2004/05/11/netbios.html

I'd be more willing to shut it off in later versions.  If you do it then make sure it is during the evening or weekend. In case you run into any unforeseen issues.

Thanks

Mike
0
 
Justin YeungCommented:
you should be no problem by disabling the netbios with above OSs.
0
 
btetlow-expertCommented:
Well, the scanner and printer won't be affected if they're TCP-based, they wouldn't likely use Netbios.

The server won't care, but on the XP clients I turned it off on the systems directly, and found no impact.   I had done the client side first to make sure of any possible hidden surprises.

If your DC is normal setup, then it has DNS and DHCP on it as well.   The issue I had with the older OS was that without netbios, a system couldn't get a DHCP address for some reason.  On it worked, off, no assignment.   If memory serves me, there was no means to disable netbios on that system either.  At least not without registry type of changes.
0
 
Sarang TinguriaSr EngineerAuthor Commented:
Is there any co-relation in between Master Browser and netbios over tcp/Ip
0
 
Mike KlineCommented:
See the last section on Petri's blog about disabling  it on a WINS server

http://www.petri.co.il/disable_netbios_in_w2k_xp_2003.htm

I don't have a WINS server up to test with otherwise I would try it

Thanks

Mike
0
 
Justin YeungCommented:
if netbios is disabled without WINS, you will not able to browse the network place because it will not able to resolve the short name.
0
 
Sarang TinguriaSr EngineerAuthor Commented:
So the conclusion seems to be like
Though MS says it is no longer required but still its needed for trust
Ennabling and disabling may varies depending upon case to case ...A throughout testing to be done before disabling the same
Trust won't work in any case if netbios over tcp/ip is disabled

Hope above considerations are correct
0
 
gaurav_mcpCommented:
see Netbios is not actually  naming system it is application programming interface (API),which is use old Microsoft  product. its is allow computer to connect and communication.Naming and name resolution are two function of netbios.
wins server use as  name resolution application, if you r working with server 2003 and i am sure you have a DNS server,there is no major effect  on your server environment.
however your security will be improve, this is main advantage to disable the Netbios,because all  Netbios is a service store information about network resource it can easily assess by anyone.The other thing is if you have older version(98,nt) of microsoft in you domain forest and you need netbios .
0
 
Sarang TinguriaSr EngineerAuthor Commented:
Removed from network and have not reported any issues yet
0

Featured Post

NEW Veeam Backup for Microsoft Office 365 1.5

With Office 365, it’s your data and your responsibility to protect it. NEW Veeam Backup for Microsoft Office 365 eliminates the risk of losing access to your Office 365 data.

  • 5
  • 3
  • 3
  • +2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now