Solved

Windows 2008 R2 authentication

Posted on 2013-12-17
6
519 Views
Last Modified: 2014-01-17
Best tool to find the authentication in Windows 2008 R2 domain?.
0
Comment
Question by:sumod_jacob
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
6 Comments
 
LVL 14

Expert Comment

by:Ram Balachandran
ID: 39724368
Can you please elobrate the question
If you need to know Windows 2008 R2 authetication architecture :  http://technet.microsoft.com/en-us/library/dn169016(v=ws.10).aspx

If you need to know if DC your machine is autheticated : Start >run> cmd and type set l
or just type set
set l

Open in new window

0
 

Author Comment

by:sumod_jacob
ID: 39724493
The thing is my share point development team want to have Kerberos authentication to be enabled in domain as its get more security advantages for the apps.. When I see the Domain Controller GPO "Netwrok Security:LAN Manager authentication level" not defined.. What need to be done inorder to enable Kerberos?
0
 
LVL 58

Assisted Solution

by:Cliff Galiher
Cliff Galiher earned 167 total points
ID: 39724537
2008 R2 uses Kerberos v5 by default out of the box. Developers just need to code accordingly.
0
PeopleSoft Has Never Been Easier

PeopleSoft Adoption Made Smooth & Simple!

On-The-Job Training Is made Intuitive & Easy With WalkMe's On-Screen Guidance Tool.  Claim Your Free WalkMe Account Now

 
LVL 17

Assisted Solution

by:Tony Massa
Tony Massa earned 333 total points
ID: 39725484
0
 

Author Comment

by:sumod_jacob
ID: 39740112
How do I check my AD using Kerberos authentication?.
0
 
LVL 17

Accepted Solution

by:
Tony Massa earned 333 total points
ID: 39740168
You can use wireshark to "watch" the authentication or just check the security logs of any domain controller. The log entries will indicate which authentication protocol is being used for users and computers. Look for event IDs of 4624 on 2008 and higher DCs.  They will have the "authentication package" that was used.  On 2003 DCs, look for event id 540.

Kerberos has been the default protocol for many years now, and falls back to NTLM only if kerberos fails.  

SharePoint needs to be set up properly for kerberos,  the domain controllers already support it.
0

Featured Post

Free Tool: SSL Checker

Scans your site and returns information about your SSL implementation and certificate. Helpful for debugging and validating your SSL configuration.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In-place Upgrading Dirsync to Azure AD Connect
I was prompted to write this article after the recent World-Wide Ransomware outbreak. For years now, System Administrators around the world have used the excuse of "Waiting a Bit" before applying Security Patch Updates. This type of reasoning to me …
This tutorial will walk an individual through configuring a drive on a Windows Server 2008 to perform shadow copies in order to quickly recover deleted files and folders. Click on Start and then select Computer to view the available drives on the se…
This tutorial will walk an individual through the process of installing the necessary services and then configuring a Windows Server 2012 system as an iSCSI target. To install the necessary roles, go to Server Manager, and select Add Roles and Featu…

732 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question