Skip to main content

Check out Interactive Visual Stories to gain hands-on experience with the SSE product features. Click here.

Skyhigh Security

Configure to Allow InSecure NETLOGON

  1. Last updated
  2. Save as PDF

For some users, the domain controller does not support AES for NETLOGON, which results in an insecure NETLOGON channel.To prevent this, the Windows Join Domain dialog provides an explicit option to control this behavior. By default, the checkbox remains unselected.

Configure Insecure NETLOGON
  1. Select Configuration | Appliances.
  2. On the appliances tree, select the appliance you want to join and click Windows Domain Memberhship.
    A list of domains appears on the settings pane. It is initially empty.
  3. Click Join to enter a domain into the list.
    The Join Domain window opens.
  4. Configure a domain name, a domain controller, and other settings in the window.
  5. Select Allow Insecure Netlogon option to allow the Insecure NETLOGON Channel for backward compatibility with the Windows Domain controller until security hardening is enforced

2026-02-03_09-51-50.png

  1. Click OK.

Tip: After an upgrade, remove existing Windows domain memberships and rejoin the domains for the Allow insecure logon checkbox to take effect.

  1. Back to top
  • Was this article helpful?

Recommended articles

  1. Article type
    Topic
  2. Tags
    This page has no tags.