Need to edit in a domain controler local security policy the option Domain Controller: LDAP server signing requierements

Posted on 2013-01-07
Last Modified: 2013-01-07
Dear Exteperts:

I am working on getting our Cisco Unity system to work with our LDAP and I need to unchecked this option "Domain controller: LDAP server signing requirements" located in the Local Security Policy of our domain controllers. Unfortunately is gray out for me to make a change. I need to know how to go by making this change. Domain-Controller.docx

Thanks for your help!
Question by:marceloNYC
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 4
LVL 10

Accepted Solution

convergint earned 300 total points
ID: 38751874
It is being controlled through Group Policy.  Open your Group Policy Management Editor and either edit the policy that is being applied to your server or create a new policy to apply to your server.
LVL 18

Assisted Solution

by:Sarang Tinguria
Sarang Tinguria earned 200 total points
ID: 38751900
There must be default domain controllers policy GPO in your GPMC console ...Edit this setting from that GPO and run gpupdate /force /boot

Author Comment

ID: 38751945
I can't make the change it is saying that "The system cannot find the file specified" Failed to saveDomain-Controller.docx
The Eight Noble Truths of Backup and Recovery

How can IT departments tackle the challenges of a Big Data world? This white paper provides a roadmap to success and helps companies ensure that all their data is safe and secure, no matter if it resides on-premise with physical or virtual machines or in the cloud.


Author Comment

ID: 38751978
The file is there by the way... I am sure it needs some editing
LVL 18

Expert Comment

by:Sarang Tinguria
ID: 38751979
Check your DNS settings make sure its pointing to internal Valid DNS only ...No public IP's should be there in TCP/IP of DC

How we should Configuere DNS on our DC :-->

Every DNS server should Point to its own IP as a primary DNS and DNS located in remote site as a secondary DNS in TCP/IP properties
All the unused NIC's to be disabled
Valid DNS Ip from ISP to be configuered in DNS forwarders Do not configuere local DNS in forwarders
Public DNS IP's Should not be used at any NIC Card except Forwarders
Domain Controllers should not be multi-homed
Running VPN server and RRas server makes the DC multihomed refer;en-us;272294

If anything above is incorrect please correct it and run "ipconfig /flushdns & ipconfig /registerdns " and restart DNS service using "net stop dns & net start dns"

DNS best practices

Checklist: Deploying DNS for Active Directory

DNS Arguments

Author Comment

ID: 38752101
Saranga Tingura, you are saying is a DNS issue why I cannot edit the group policies in Active Directory?
LVL 18

Expert Comment

by:Sarang Tinguria
ID: 38752201
Some times due to DNS issue it may happen as I have came across this condition before and the server had Public DNS configured BTW have you cross checked DNS

Author Closing Comment

ID: 38752272
Thank You so much guys! Have a good one!
LVL 18

Expert Comment

by:Sarang Tinguria
ID: 38752343
Hope the issue got resolved ..I guess you have created new Group policy ...I would strongly recommend you to Get that error resolved if not

Featured Post

Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

While rebooting windows server 2003 server , it's showing "active directory rebuilding indices please wait" at startup. It took a little while for this process to complete and once we logged on not all the services were started so another reboot is …
In-place Upgrading Dirsync to Azure AD Connect
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…
This video shows how to use Hyena, from SystemTools Software, to bulk import 100 user accounts from an external text file. View in 1080p for best video quality.

730 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question