was wondering if any one could give us a "heads up" on how we prevent a windows 2000 domain controller from authenticating a user logon request.
by comparison on an NT4 domain controller, the configuration of "pausing" the netlogon service would prevent the DC from authenticating a user logon request i would guess that the same "fix" may apply to a win2k DC for an NTLM logon request say from a downlevel (non Kerberos aware client) but am not sure whether this would apply to a Kerberos logon request. TIA GT List info : http://www.activedir.org/mail_list.htm List FAQ : http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
