Is NTLM authentication still needed for Exchange 2013 (Full Version)

All Forums >> [Microsoft Exchange 2013] >> Installation



Message


hunglikethor -> Is NTLM authentication still needed for Exchange 2013 (2.Nov.2016 9:32:47 PM)

Is NTLM still needed for Exchange 2013?

I have my group policies set to only accept NTLMv2, and reject all else.

My domain controllers (Windows 2012R2 domain controllers, windows 2012r2 native forest/domain) are set up via GPO to reject NTLM and only use Kerberos&LDAP.

Does this security posture cause any issues? I have Exchange 2010 servers as well, and they do not seem to be bothered by my GPO settings.

Does Exchange 2013 require a more insecure active directory domain than Exchange 2010?

REason I am asking this is that a Microsoft support person is troubleshooioting my inability to create a DAG cluster. He wants me to change the "lmcompatibility" registry key to accept less secure authentication.




visionviper -> RE: Is NTLM authentication still needed for Exchange 2013 (24.Apr.2017 8:54:01 PM)

The only thing I am aware this would impact would be client access. As long as all of your clients can do NTLMv2 then there should be no problems.




BeTaCam -> RE: Is NTLM authentication still needed for Exchange 2013 (15.Sep.2017 10:31:19 AM)

Yes. There is a dependency on DAG's




Page: [1]