Kerberos is the default security provider for Windows 2000 & XP, computers that are connected to a Windows Domain. By default, Kerberos uses UDP Port 88 to contact a Domain Controller (DC) and log on.
In some cases, it can happen that those UDP packets are blocked (e.g. because a firewall) and thus the Client will either be not able to connect to the DC, or use a weaker security provider like NTLM (because NTLM does not use UDP on Port 88).
How to force Kerberos to use TCP instead of UDP
No comments:
Post a Comment