Solved

Need to edit in a domain controler local security policy the option Domain Controller: LDAP server signing requierements

Posted on 2013-01-07
9
1,085 Views
Last Modified: 2013-01-07
Dear Exteperts:

I am working on getting our Cisco Unity system to work with our LDAP and I need to unchecked this option "Domain controller: LDAP server signing requirements" located in the Local Security Policy of our domain controllers. Unfortunately is gray out for me to make a change. I need to know how to go by making this change. Domain-Controller.docx

Thanks for your help!
0
Comment
Question by:marceloNYC
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 4
9 Comments
 
LVL 10

Accepted Solution

by:
convergint earned 300 total points
ID: 38751874
It is being controlled through Group Policy.  Open your Group Policy Management Editor and either edit the policy that is being applied to your server or create a new policy to apply to your server.
0
 
LVL 18

Assisted Solution

by:Sarang Tinguria
Sarang Tinguria earned 200 total points
ID: 38751900
There must be default domain controllers policy GPO in your GPMC console ...Edit this setting from that GPO and run gpupdate /force /boot
0
 

Author Comment

by:marceloNYC
ID: 38751945
I can't make the change it is saying that "The system cannot find the file specified" Failed to saveDomain-Controller.docx
0
Best Practices: Disaster Recovery Testing

Besides backup, any IT division should have a disaster recovery plan. You will find a few tips below relating to the development of such a plan and to what issues one should pay special attention in the course of backup planning.

 

Author Comment

by:marceloNYC
ID: 38751978
The file is there by the way... I am sure it needs some editing
0
 
LVL 18

Expert Comment

by:Sarang Tinguria
ID: 38751979
Check your DNS settings make sure its pointing to internal Valid DNS only ...No public IP's should be there in TCP/IP of DC

How we should Configuere DNS on our DC :-->

Every DNS server should Point to its own IP as a primary DNS and DNS located in remote site as a secondary DNS in TCP/IP properties
All the unused NIC's to be disabled
Valid DNS Ip from ISP to be configuered in DNS forwarders Do not configuere local DNS in forwarders
Public DNS IP's Should not be used at any NIC Card except Forwarders
Domain Controllers should not be multi-homed
Running VPN server and RRas server makes the DC multihomed refer http://support.microsoft.com/default.aspx?scid=kb;en-us;272294


If anything above is incorrect please correct it and run "ipconfig /flushdns & ipconfig /registerdns " and restart DNS service using "net stop dns & net start dns"

DNS best practices
http://technet.microsoft.com/en-us/library/cc778439(v=WS.10).aspx

Checklist: Deploying DNS for Active Directory
http://technet.microsoft.com/en-us/library/cc757116(v=ws.10)

DNS Arguments

http://blogs.technet.com/b/askds/archive/2010/07/17/friday-mail-sack-saturday-edition.aspx#dnsbest
0
 

Author Comment

by:marceloNYC
ID: 38752101
Saranga Tingura, you are saying is a DNS issue why I cannot edit the group policies in Active Directory?
0
 
LVL 18

Expert Comment

by:Sarang Tinguria
ID: 38752201
Some times due to DNS issue it may happen as I have came across this condition before and the server had Public DNS configured BTW have you cross checked DNS
0
 

Author Closing Comment

by:marceloNYC
ID: 38752272
Thank You so much guys! Have a good one!
0
 
LVL 18

Expert Comment

by:Sarang Tinguria
ID: 38752343
Hope the issue got resolved ..I guess you have created new Group policy ...I would strongly recommend you to Get that error resolved if not
0

Featured Post

Visualize your virtual and backup environments

Create well-organized and polished visualizations of your virtual and backup environments when planning VMware vSphere, Microsoft Hyper-V or Veeam deployments. It helps you to gain better visibility and valuable business insights.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

A project that enables an administrator to perform actions within a user session context not just at the time of login but any time later on day(s) or week(s) later.
Did you know that more than 4 billion data records have been recorded as lost or stolen since 2013? It was a staggering number brought to our attention during last week’s ManageEngine webinar, where attendees received a comprehensive look at the ma…
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …
Are you ready to implement Active Directory best practices without reading 300+ pages? You're in luck. In this webinar hosted by Skyport Systems, you gain insight into Microsoft's latest comprehensive guide, with tips on the best and easiest way…

688 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question