Hi, If you are using Windows Server 2003 with legacy clients (Win9x, WinNT4-pre-SP3) authentication problems occur because W2K3 has SMB signing by default enabled (In Windows 2000 default disabled). For NT4 upgrade at least to SP3 and for Win9x clients install the latest DS Client or not recommended by Microsoft: disable SMB signing on Windows 2003 (Security options for the default domain controllers policy) More info on MS-KBQ811497
Regards, Jorge -----Original Message----- From: Al Garrett To: [EMAIL PROTECTED] Sent: 12/12/2003 11:35 PM Subject: [ActiveDir] Windows 2000 and Windows 9x clients Similar issue: We have a Win2k AD domain and a few holdout clients on Win9x. Plans are afoot to upgrade all to XP Pro but in the meantime, is there any way to enforce password complexity on the old clients? -----Original Message----- From: Steve Shaff [mailto:[EMAIL PROTECTED] Sent: Thursday, October 09, 2003 11:19 AM To: [EMAIL PROTECTED] Subject: [ActiveDir] Windows 2003 and Windows 98 clients Okay, I know that people are going to be like... "Windows 98, come on. Please join us in the Twentieth Century"!!! But, we need to do testing on Windows98 for our product compatibility. We just upgraded to Windows 2003 (2000 native) and now it appears that individuals that are running Windows 98,95,ME are not able to authenticate against the domain. It just prompts them for the username, password and domain. It just locks the account out after X tries, per our security policy. We have also tried to use webmail, that previously worked on these PCs. It prompts for the certificate (which is good), prompts for user/password/domain, then gives you an access is denied. I think that all these problems with this "ancient" OS are related. I have the PDC, RID and GC on a W2K3 DC and it appears to be running properly. Any ideas? Thanks, Steve This e-mail and any attachment is for authorised use by the intended recipient(s) only. It may contain proprietary material, confidential information and/or be subject to legal privilege. It should not be copied, disclosed to, retained or used by, any other party. If you are not an intended recipient then please promptly delete this e-mail and any attachment and all copies and inform the sender. Thank you. List info : http://www.activedir.org/mail_list.htm List FAQ : http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
