Script

[This is pre-release documentation and subject to change in future releases. This topic's current status is: Milestone-Ready]

Topic Last Modified: 2010-03-10

Organizations often lock down Active Directory Domain Services (AD DS) to help mitigate security risks. However, a locked-down Active Directory environment can limit the permissions that Communications Server 2010 requires. Properly preparing a locked down Active Directory environment for Communications Server involves some additional considerations and steps.

Two common ways in which permissions are limited in a locked-down Active Directory environment are as follows:

• Authenticated user access control entries (ACEs) are removed from containers.
  
  
• Permissions inheritance is disabled on containers of User, Contact, InetOrgPerson, or Computer objects.
  
  

In This Section