High Security Domain Controller GPO preventing user to view Sharep

TheMSsForum.com: The Microsoft Software Forum

I'm currently running Windows Server 2003 with a separate domain controller
and sharepoint server. I installed sharepoint without errors, then applied
my High Security group policy templates pulled from Windows 2003 security
guide. I then take my user which was able to log in before, and can not long
in now. I get the login box to display, enter my information and then the
box comes backup, like it was not able to authenticate to the domain
controller.

Would anyone know which setting in the domain controller GPO that would
prevent sharepoint authentication? I know it is something in there, because
when I disable the GPO link it works...re-enable it and it breaks again.

Thanks for the help!
Top

Re: High Security Domain Controller GPO preventing user to view Sharep by Steve

Steve
Fri Jun 02 16:02:15 CDT 2006

My gut feeling may be that it forces kerberos authentication ? whereas
SharePoint is using NTLM. I would have to drill into the high security
template to think of more but don't have access at the minute.

Steve Smith
www.combined-knowledge.com


"Michael_Dustin" <Michael_Dustin@discussions.microsoft.com> wrote in message
news:4B6C68E5-E360-4F12-BF87-AD7F037206B9@microsoft.com...
> I'm currently running Windows Server 2003 with a separate domain
> controller
> and sharepoint server. I installed sharepoint without errors, then
> applied
> my High Security group policy templates pulled from Windows 2003 security
> guide. I then take my user which was able to log in before, and can not
> long
> in now. I get the login box to display, enter my information and then the
> box comes backup, like it was not able to authenticate to the domain
> controller.
>
> Would anyone know which setting in the domain controller GPO that would
> prevent sharepoint authentication? I know it is something in there,
> because
> when I disable the GPO link it works...re-enable it and it breaks again.
>
> Thanks for the help!


Top

Re: High Security Domain Controller GPO preventing user to view Sh by Michael_Dustin

Michael_Dustin
Mon Jun 05 11:36:02 CDT 2006

If you wouldn't mind checking that would be great...I've been through the
template and there are numerous settings I would think effect it, but I"m not
exactly sure which ones to change and what to change the values to. That and
in conjuction with whenever the GPO refreshes, it would take me awhile to
figure out exactly the setting I would need.

Thanks!

"Steve Smith" wrote:

> My gut feeling may be that it forces kerberos authentication ? whereas
> SharePoint is using NTLM. I would have to drill into the high security
> template to think of more but don't have access at the minute.
>
> Steve Smith
> www.combined-knowledge.com
>
>
> "Michael_Dustin" <Michael_Dustin@discussions.microsoft.com> wrote in message
> news:4B6C68E5-E360-4F12-BF87-AD7F037206B9@microsoft.com...
> > I'm currently running Windows Server 2003 with a separate domain
> > controller
> > and sharepoint server. I installed sharepoint without errors, then
> > applied
> > my High Security group policy templates pulled from Windows 2003 security
> > guide. I then take my user which was able to log in before, and can not
> > long
> > in now. I get the login box to display, enter my information and then the
> > box comes backup, like it was not able to authenticate to the domain
> > controller.
> >
> > Would anyone know which setting in the domain controller GPO that would
> > prevent sharepoint authentication? I know it is something in there,
> > because
> > when I disable the GPO link it works...re-enable it and it breaks again.
> >
> > Thanks for the help!
>
>
>
Top