Topic Last Modified: 2010-03-10
Organizations often lock down Active Directory Domain Services (AD DS) to help mitigate security risks. However, a locked-down Active Directory environment can limit the permissions that Communications Server 2010 requires. Properly preparing a locked down Active Directory environment for Communications Server involves some additional considerations and steps.
Two common ways in which permissions are limited in a locked-down Active Directory environment are as follows:
- Authenticated user access control entries (ACEs) are removed
- Permissions inheritance is disabled on containers of User,
Contact, InetOrgPerson, or Computer objects.
In This Section
- Authenticated User Permissions Are Removed
- Permissions Inheritance Is Disabled on Computers, Users, or