"NothingtoSay?" <> wrote in message
news:c57adf29-caef-4a25-ae4d-...
> Hi,
> We are about to turn up security on a W2003 domain to stop LM traffic
> (ie enforce NTLM or above), it had previously been weakened to allow
> w95 machines.
>
> Before doing this have a week to scan for any remaining systems that
> use LM - ie confirm we can proceed with no impact.
>
> Any idea on what event log id I should search for - in reference to
> LM traffic
> Did think about running a net mon 3 trace as will but not sure it will
> be easy to pick LM traffic out from the other authentication noise.
Setup a windows 98 system using LM for authentication, look at your watch,
log on, look at your watch, then examine the various event logs for
unfamiliar looking entries.
Another really effective way to find these systems would be to just make the
change after a warning and waiting some reasonable amount of time, and be
prepared to upgrade any systems found to be no longer functional.
/Al
|
Similar Threads
Linear Mode
