blackicedbear/dms
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

befhel ladap2

Browse Source
This commit is contained in:
unknown
2026-04-30 05:34:37 -07:00
parent a4bdfe9b2a
commit 8a2c749396
1 changed files with 10 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files
befehl.txt
+10 -4
View File
@@ -1,5 +1,11 @@
# LDAP Signing von "Required" (2) auf "Negotiate" (1) setzen
Set-ItemProperty -Path "HKLM:\SYSTEM\CurrentControlSet\Services\NTDS\Parameters" -Name "LDAPServerIntegrity" -Value 1 -Type DWord
# LDAP Signing komplett deaktivieren
Set-ItemProperty -Path "HKLM:\SYSTEM\CurrentControlSet\Services\NTDS\Parameters" -Name "LDAPServerIntegrity" -Value 0 -Type DWord
# NTDS-Dienst neu starten damit die Aenderung greift
Restart-Service NTDS -Force
# Channel Binding ebenfalls deaktivieren (falls aktiv)
Set-ItemProperty -Path "HKLM:\SYSTEM\CurrentControlSet\Services\NTDS\Parameters" -Name "LdapEnforceChannelBinding" -Value 0 -Type DWord
# NTDS neu starten
Restart-Service NTDS -Force
# Optional: GPO-Refresh erzwingen falls eine Policy das ueberschreibt
gpupdate /force