This policy setting defines the list of trusting forests that the Key Distribution Center (KDC) searches when attempting to resolve two-part service principal names (SPNs). If you enable this policy setting, the KDC will search the forests in this list if it is unable to resolve a two-part SPN in the local forest. The forest search is performed by using a global catalog or name suffix hints. If a match is found, the KDC will return a referral ticket to the client for the appropriate domain. If you disable or do not configure this policy setting, the KDC will not search the listed forests to resolve the SPN. If the KDC is unable to resolve the SPN because the name is not found, NTLM authentication might be used. To ensure consistent behavior, this policy setting must be supported and set identically on all domain controllers in the domain.
This policy setting defines additional definition sets to enable for network traffic inspection. Definition set GUIDs should ...
This policy setting defines processes from which outbound network traffic will not be inspected. Process names should be ...
This policy setting defines the default behavior that the Background Intelligent Transfer Service (BITS) uses for background ...
This policy setting defines the list of trusting forests that the Kerberos client searches when attempting to resolve two-part ...
This policy setting defines the list of trusting forests that the Key Distribution Center (KDC) searches when attempting ...
This policy setting defines the maximum size (in kilobytes) of downloaded files and attachments that will be scanned. If ...
This policy setting defines the number of days items should be kept in the Quarantine folder before being removed. If you ...
This policy setting defines the number of days items should be kept in the scan history folder before being permanently removed. ...
This policy setting defines threats which will be excluded from detection during network traffic inspection. Threats should ...