Announcement

Collapse
No announcement yet.

Configure encryption types allowed for Kerberos

Collapse
X
  • Filter
  • Time
  • Show
Clear All
new posts

  • Configure encryption types allowed for Kerberos

    Hi

    To enable sso to Oracle application while Windows 2008 R2 and Windows 2003 domain controllers exist on the network. I have changed "Configure encryption types allowed for Kerberos" not to include AES 128 and AES 256 authentication (this will only run for a short period). After windows 7 restart. I can see that the policy exists on the Windows 7 computer. but still it tries to use AES authentication. After gpupdate /force . the computer stops trying to use these authentication and uses RC4 as expected.
    Is there any way to avoid the gpupdate to enforce this? ( I dont want to run the gpupdate in the login script)

    Thanks
Working...
X