Hi all,
Has anyone stopped the publication of generic SRV records in thier hub-spoke
environment. We have a multi-domain Windows 2000 native mode environment
that I need to restrict clients at branch sites to authenticate only locally
(preferred) and in the event of a site failure back to a designated hub
only.
I've read all the corresponding MS articles and the one by Gil Kirkpatrick
but could not find any examples of how the registry hack must be laid out
with all the different mnemonics.
Is this correct?
LdapIpAddress A c.a.b.com
Ldap SRV _ldap._tcp.c.a.b.com
DcByGuid SRV
_ldap._tcp.b3ec541b-8c29-4e08-9a75-2807755469324.domains._msdcs.a.b.com
Kdc SRV _kerberos._tcp.dc._msdcs.c.a.b.com
Dc SRV _ldap._tcp.dc._msdcs.c.a.b.com
Rfc1510Kdc SRV _kerberos._tcp.c.a.b.com
Rfc1510UdpKdc SRV _kerberos._udp.c.a.b.com
Rfc1510Kpwd SRV _kpasswd._tcp.c.a.b.com
Rfc1510UdpKpwd SRV _kpasswd._udp.c.a.b.com
Gc SRV _ldap._tcp.gc._msdcs.a.b.com
GcIpAddress A _gc._msdcs.a.b.com
GenericGc SRV _gc._tcp.a.b.com
Thanks,
List info : http://www.activedir.org/List.aspx
List FAQ : http://www.activedir.org/ListFAQ.aspx
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
