1

As you might already know AD does not let you change the password through LDAP if you don't have a secure connection to AD. I heard that there is a registry setting to change this behavior but so far couldn't find where it is... Anyone of you know how can I can change this behavior?

ThatGraemeGuy
  • 15,473
  • 12
  • 53
  • 79
yusuf
  • 195
  • 2
  • 6

1 Answers1

2

You should be able to disable this by changing the local security policy on the domain controller(s) for 'digitally signed server communications'

This can be found in

Computer->WindowsSettings->LocalPolicies->SecurityOptions

Obviously you need to be aware of the security hole you would be opening on your DC when doing this.

Sam Cogan
  • 38,736
  • 6
  • 78
  • 114