To disable signed or encrypted LDAP traffic
- Open Registry Editor.
Caution
-
Incorrectly editing the registry may severely damage your system. Before making changes to the registry, you should back up any valued data on the computer. You can also use the Last Known Good Configuration startup option if you encounter problems after manual changes have been applied.
- In Registry Editor, navigate to the following registry key:
Where?
- HKEY_LOCAL_MACHINE
- SOFTWARE
- Microsoft
- Windows
- CurrentVersion
- AdminDebug
- Click Edit, point to New, and then click DWORD Value.
- In the text box that appears, type ADsOpenObjectFlags, and then press ENTER.
- Double-click the ADsOpenObjectFlags registry key you just created, and then change the Value Data to one of the following values below:
| Value data (Hexadecimal) |
Disables |
| 1 |
Signing |
| 2 |
Encryption |
| 3 |
Encryption and Signing |
Caution
- This procedure will disable the use of signed or encrypted LDAP traffic for some Active Directory administrative tools. It is recommended that you avoid disabling this feature. For more information, see Related Topics.
Notes
- XOX
- To open Registry Editor, click Start, click Run, type regedit, and then click OK.
Related Topics
