Solved

Windows 2012 Dynamic Access Control, What comptuer claim type supports domain membership?

Posted on 2014-12-03
1
302 Views
Last Modified: 2014-12-05
I like to limit access to share by AD domain membership so that only AD domain computer can access the share. What claim type is usually used for this ?

I was trying to use 'objectSID'  which contains domain SID, but in Clain Type to select, it doesn't exist.
0
Comment
Question by:crcsupport
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
1 Comment
 
LVL 82

Accepted Solution

by:
David Johnson, CD, MVP earned 500 total points
ID: 40479393
Device claims are supported in Windows 8+ clients only.
Open Group Policy Management and navigate to Domain.
Right-click the Default Domain Controllers Policy and select Edit.
In the Group Policy Management Editor window, navigate to Computer Configuration, > Administrative Templates, System, and Kerberos.
Select Enable KDC support for claims, compound authentication, and Kerberos armoring.
Click OK. Close Group Policy Management.

http://bit.ly/15Pj4Ix
0

Featured Post

Salesforce Has Never Been Easier

Improve and reinforce salesforce training & adoption using WalkMe's digital adoption platform. Start saving on costly employee training by creating fast intuitive Walk-Thrus for Salesforce. Claim your Free Account Now

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Configuring Remote Assistance for use with SCCM
Here's a look at newsworthy articles and community happenings during the last month.
If you’ve ever visited a web page and noticed a cool font that you really liked the look of, but couldn’t figure out which font it was so that you could use it for your own work, then this video is for you! In this Micro Tutorial, you'll learn yo…
Sometimes it takes a new vantage point, apart from our everyday security practices, to truly see our Active Directory (AD) vulnerabilities. We get used to implementing the same techniques and checking the same areas for a breach. This pattern can re…

623 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question