Subscribe

Windows 2008 domain controllers + Netapp FAS960 running ONTAP 7.3?

I was planning on upgrading my domain controllers to Windows 2008 and saw the following message:

"Windows Server 2008 and "Windows Server 2008 R2" domain controllers have a new more secure default for the security setting named "Allow cryptography algorithms compatible with Windows NT 4.0." This setting prevents Microsoft Windows and non-Microsoft SMB "clients" from using weaker NT 4.0 style cryptography algorithms when establishing security channel sessions against Windows Server 2008 or "Windows Server 2008 R2" domain controllers. As a result of this new default, operations or applications that require a security channel serviced by Windows Server 2008 or "Windows Server 2008 R2" domain controllers might fail.

Platforms impacted by this change include Windows NT 4.0, as well as non-Microsoft SMB "clients" and network-attached storage (NAS) devices that do not support stronger cryptography algorithms. Some operations on clients running versions of Windows earlier than Windows Vista with Service Pack 1 are also impacted, including domain join operations performed by the Active Directory Migration Tool or Windows Deployment Services.

For more information about this setting, see Knowledge Base article 942564 (http://go.microsoft.com/fwlink/?LinkId=104751)."

Does anyone know if ONTAP 7.3 is one of the NAS devices that is affected by this?

Thanks.

Re: Windows 2008 domain controllers + Netapp FAS960 running ONTAP 7.3?

Hi and welcome to the forums!

Windows 2008 DC are fine from ONTAP 7.2.5.1 onwards:

http://now.netapp.com/NOW/knowledge/docs/ontap/rel732/html/ontap/rnote/rel_notes/concept/c_oc_rn_feat73-fap-windows-compatibility.html

Regards,
Radek