Andrew, I will be working with you regarding this issue. I wanted to clarify your statement regarding downlevel domain. Are you referring to a windows 2008 server acting as a domain controller in a downlevel domain? I will get back to you shortly once I have completed my research.
Richard Guthrie Open Protocols Support Team Support Escalation Engineer, US-CSS DSC PROTOCOL TEAM Tel: +1 (469) 775-7794 E-mail: [EMAIL PROTECTED] We're hiring http://members.microsoft.com/careers/search/details.aspx?JobID=A976CE32-B0B9-41E3-AF57-05A82B88383E&start=1&interval=10&SortCol=DatePosted -----Original Message----- From: Andrew Bartlett [mailto:[EMAIL PROTECTED] Sent: Monday, August 25, 2008 6:24 PM To: Interoperability Documentation Help Cc: [EMAIL PROTECTED]; [EMAIL PROTECTED] Subject: How are 'supported enc types' determined in trusts? In MS-LSAD 3.1.1.5 Supported Encryption Types It states the mapping between bits are supported encryption types. In MS-ADTS 7.1.6.7.3 we find the backing attribute is msDs-supportedEncryptionTypes. My question is, if a Windows 2008 server in a downlevel domain, and so trusted domain objects do not include msDs-supportedEncryptionTypes (or a 'set' was never performed on this LSA information level), what value will this attribute have? Is it dependent on the trust type/attributes flags for example? Thanks, Andrew Bartlett -- Andrew Bartlett http://samba.org/~abartlet/ Authentication Developer, Samba Team http://samba.org Samba Developer, Red Hat Inc. _______________________________________________ cifs-protocol mailing list [email protected] https://lists.samba.org/mailman/listinfo/cifs-protocol
