Want to win a PS4? Go Premium and enter to win our High-Tech Treats giveaway. Enter to Win

x
?
Solved

Windows 2008 R2 authentication

Posted on 2013-12-17
6
Medium Priority
?
541 Views
Last Modified: 2014-01-17
Best tool to find the authentication in Windows 2008 R2 domain?.
0
Comment
Question by:sumod_jacob
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
6 Comments
 
LVL 14

Expert Comment

by:Ram Balachandran
ID: 39724368
Can you please elobrate the question
If you need to know Windows 2008 R2 authetication architecture :  http://technet.microsoft.com/en-us/library/dn169016(v=ws.10).aspx

If you need to know if DC your machine is autheticated : Start >run> cmd and type set l
or just type set
set l

Open in new window

0
 

Author Comment

by:sumod_jacob
ID: 39724493
The thing is my share point development team want to have Kerberos authentication to be enabled in domain as its get more security advantages for the apps.. When I see the Domain Controller GPO "Netwrok Security:LAN Manager authentication level" not defined.. What need to be done inorder to enable Kerberos?
0
 
LVL 59

Assisted Solution

by:Cliff Galiher
Cliff Galiher earned 501 total points
ID: 39724537
2008 R2 uses Kerberos v5 by default out of the box. Developers just need to code accordingly.
0
Get your Conversational Ransomware Defense e‑book

This e-book gives you an insight into the ransomware threat and reviews the fundamentals of top-notch ransomware preparedness and recovery. To help you protect yourself and your organization. The initial infection may be inevitable, so the best protection is to be fully prepared.

 
LVL 17

Assisted Solution

by:Tony Massa
Tony Massa earned 999 total points
ID: 39725484
0
 

Author Comment

by:sumod_jacob
ID: 39740112
How do I check my AD using Kerberos authentication?.
0
 
LVL 17

Accepted Solution

by:
Tony Massa earned 999 total points
ID: 39740168
You can use wireshark to "watch" the authentication or just check the security logs of any domain controller. The log entries will indicate which authentication protocol is being used for users and computers. Look for event IDs of 4624 on 2008 and higher DCs.  They will have the "authentication package" that was used.  On 2003 DCs, look for event id 540.

Kerberos has been the default protocol for many years now, and falls back to NTLM only if kerberos fails.  

SharePoint needs to be set up properly for kerberos,  the domain controllers already support it.
0

Featured Post

Free learning courses: Active Directory Deep Dive

Get a firm grasp on your IT environment when you learn Active Directory best practices with Veeam! Watch all, or choose any amount, of this three-part webinar series to improve your skills. From the basics to virtualization and backup, we got you covered.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article provides a convenient collection of links to Microsoft provided Security Patches for operating systems that have reached their End of Life support cycle. Included operating systems covered by this article are Windows XP,  Windows Server…
Wouldn't it be nice if objects in Active Directory automatically moved into the correct Organizational Units? This is what AutoAD aims to do and as a plus, it automatically creates Sites, Subnets, and Organizational Units.
This tutorial will walk an individual through the process of configuring basic necessities in order to use the 2010 version of Data Protection Manager. These include storage, agents, and protection jobs. Launch Data Protection Manager from the deskt…
This tutorial will walk an individual through the process of installing of Data Protection Manager on a server running Windows Server 2012 R2, including the prerequisites. Microsoft .Net 3.5 is required. To install this feature, go to Server Manager…

636 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question