?
Solved

Windows 2008 R2 authentication

Posted on 2013-12-17
6
Medium Priority
?
551 Views
Last Modified: 2014-01-17
Best tool to find the authentication in Windows 2008 R2 domain?.
0
Comment
Question by:sumod_jacob
6 Comments
 
LVL 14

Expert Comment

by:Ram Balachandran
ID: 39724368
Can you please elobrate the question
If you need to know Windows 2008 R2 authetication architecture :  http://technet.microsoft.com/en-us/library/dn169016(v=ws.10).aspx

If you need to know if DC your machine is autheticated : Start >run> cmd and type set l
or just type set
set l

Open in new window

0
 

Author Comment

by:sumod_jacob
ID: 39724493
The thing is my share point development team want to have Kerberos authentication to be enabled in domain as its get more security advantages for the apps.. When I see the Domain Controller GPO "Netwrok Security:LAN Manager authentication level" not defined.. What need to be done inorder to enable Kerberos?
0
 
LVL 60

Assisted Solution

by:Cliff Galiher
Cliff Galiher earned 501 total points
ID: 39724537
2008 R2 uses Kerberos v5 by default out of the box. Developers just need to code accordingly.
0
Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

 
LVL 17

Assisted Solution

by:Tony Massa
Tony Massa earned 999 total points
ID: 39725484
0
 

Author Comment

by:sumod_jacob
ID: 39740112
How do I check my AD using Kerberos authentication?.
0
 
LVL 17

Accepted Solution

by:
Tony Massa earned 999 total points
ID: 39740168
You can use wireshark to "watch" the authentication or just check the security logs of any domain controller. The log entries will indicate which authentication protocol is being used for users and computers. Look for event IDs of 4624 on 2008 and higher DCs.  They will have the "authentication package" that was used.  On 2003 DCs, look for event id 540.

Kerberos has been the default protocol for many years now, and falls back to NTLM only if kerberos fails.  

SharePoint needs to be set up properly for kerberos,  the domain controllers already support it.
0

Featured Post

Keep up with what's happening at Experts Exchange!

Sign up to receive Decoded, a new monthly digest with product updates, feature release info, continuing education opportunities, and more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Group policies can be applied selectively to specific devices with the help of groups. Utilising this, it is possible to phase-in group policies, over a period of time, by randomly adding non-members user or computers at a set interval, to a group f…
This article provides a convenient collection of links to Microsoft provided Security Patches for operating systems that have reached their End of Life support cycle. Included operating systems covered by this article are Windows XP,  Windows Server…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…
There are cases when e.g. an IT administrator wants to have full access and view into selected mailboxes on Exchange server, directly from his own email account in Outlook or Outlook Web Access. This proves useful when for example administrator want…
Suggested Courses

850 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question