A
adfreak
We are reviewing the Member Server Baseline Security Policy for Windows
2003. One of the policy settings is to require domain controller
connectivity in order to unluck a server console. We are debating the
follow rumor:
when the person who logs into the sever is authenticated by a specific DC,
if that DC shuts down (or is restarted) during the time they try to unlock
the server (meaning, they can't talk to the original DC that authenticated
them), will they in turn talk to another DC for authentication? The guys in
my group say that whatever session is established at initial sign on is the
only one that will work?
Anyone have insight? References to online articles which dispute this?
Regards
2003. One of the policy settings is to require domain controller
connectivity in order to unluck a server console. We are debating the
follow rumor:
when the person who logs into the sever is authenticated by a specific DC,
if that DC shuts down (or is restarted) during the time they try to unlock
the server (meaning, they can't talk to the original DC that authenticated
them), will they in turn talk to another DC for authentication? The guys in
my group say that whatever session is established at initial sign on is the
only one that will work?
Anyone have insight? References to online articles which dispute this?
Regards