NT box can't map drive to Windows 2008

Bleek · 19 Jul 2010 at 08:56

Does anyone know why an NT box can't map a drive to Windows 2008 even though it can ping it?

JonnyT · 19 Jul 2010 at 09:55

Possibly because NT4 doesn't support NTLMv2 authentication, or because you don't have a WINS server on your network (WINS was deprecated as of Windows 2003 but lots of places still use it)?

The bottom post on this link gives details of how to enable NT4 authentication on a Server 2008 domain via group policy.

Bleek · 20 Jul 2010 at 14:08

Thanks for the link but we don't have an account for that website.

PistolPete · 20 Jul 2010 at 14:15

Google the full title: "NT4 clients unable to find domain after upgrading domain to server 2008 native mode"

It'll direct you to the same page but you can scroll down and read the answers!

Sp00n · 20 Jul 2010 at 15:19

Actually NT4 clients will work under server 2008 native mode, the Default Domain Controller GPO just needs a couple of tweaks to ratchet down the encryption and authentication so that NT4 clients can communicate. Not a good long term strategy for security reasons, but no the less it allows legacy clients to connect until they can be migrated to a newer platform.

Default Domain Controller GPO:
Computer Configuation->Policies->Windows Settings->Security Settings->Local Policies->Security Options

Network security: LAN Manager authentication level
----Send LM & NTLM - use NTLMv2 session security if negotiated

Computer Configuration->Policies->Administrative Templates->System->Net Logon

Allow cryptography algorithms compatible with Windows NT 4.0
---Enabled
Software\Policies\Microsoft\Netlogon\Parameters\AllowNT4Crypto 1