[Last Call] Learn how to a build a cloud-first strategyRegister Now

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1183
  • Last Modified:

Need to edit in a domain controler local security policy the option Domain Controller: LDAP server signing requierements

Dear Exteperts:

I am working on getting our Cisco Unity system to work with our LDAP and I need to unchecked this option "Domain controller: LDAP server signing requirements" located in the Local Security Policy of our domain controllers. Unfortunately is gray out for me to make a change. I need to know how to go by making this change. Domain-Controller.docx

Thanks for your help!
0
marceloNYC
Asked:
marceloNYC
  • 4
  • 4
2 Solutions
 
convergintCommented:
It is being controlled through Group Policy.  Open your Group Policy Management Editor and either edit the policy that is being applied to your server or create a new policy to apply to your server.
0
 
Sarang TinguriaSr EngineerCommented:
There must be default domain controllers policy GPO in your GPMC console ...Edit this setting from that GPO and run gpupdate /force /boot
0
 
marceloNYCAuthor Commented:
I can't make the change it is saying that "The system cannot find the file specified" Failed to saveDomain-Controller.docx
0
Concerto's Cloud Advisory Services

Want to avoid the missteps to gaining all the benefits of the cloud? Learn more about the different assessment options from our Cloud Advisory team.

 
marceloNYCAuthor Commented:
The file is there by the way... I am sure it needs some editing
0
 
Sarang TinguriaSr EngineerCommented:
Check your DNS settings make sure its pointing to internal Valid DNS only ...No public IP's should be there in TCP/IP of DC

How we should Configuere DNS on our DC :-->

Every DNS server should Point to its own IP as a primary DNS and DNS located in remote site as a secondary DNS in TCP/IP properties
All the unused NIC's to be disabled
Valid DNS Ip from ISP to be configuered in DNS forwarders Do not configuere local DNS in forwarders
Public DNS IP's Should not be used at any NIC Card except Forwarders
Domain Controllers should not be multi-homed
Running VPN server and RRas server makes the DC multihomed refer http://support.microsoft.com/default.aspx?scid=kb;en-us;272294


If anything above is incorrect please correct it and run "ipconfig /flushdns & ipconfig /registerdns " and restart DNS service using "net stop dns & net start dns"

DNS best practices
http://technet.microsoft.com/en-us/library/cc778439(v=WS.10).aspx

Checklist: Deploying DNS for Active Directory
http://technet.microsoft.com/en-us/library/cc757116(v=ws.10)

DNS Arguments

http://blogs.technet.com/b/askds/archive/2010/07/17/friday-mail-sack-saturday-edition.aspx#dnsbest
0
 
marceloNYCAuthor Commented:
Saranga Tingura, you are saying is a DNS issue why I cannot edit the group policies in Active Directory?
0
 
Sarang TinguriaSr EngineerCommented:
Some times due to DNS issue it may happen as I have came across this condition before and the server had Public DNS configured BTW have you cross checked DNS
0
 
marceloNYCAuthor Commented:
Thank You so much guys! Have a good one!
0
 
Sarang TinguriaSr EngineerCommented:
Hope the issue got resolved ..I guess you have created new Group policy ...I would strongly recommend you to Get that error resolved if not
0

Featured Post

Important Lessons on Recovering from Petya

In their most recent webinar, Skyport Systems explores ways to isolate and protect critical databases to keep the core of your company safe from harm.

  • 4
  • 4
Tackle projects and never again get stuck behind a technical roadblock.
Join Now