Setting system security compatibility levels 119Programming Operations GuideSetting system security compatibility levelsUse the Security screen to set authentication, signing, encryption, and other security-relatedsettings. Some of these settings depend on the Windows operating system used by clientworkstations.1 Click the keys beside BCM and System.2 Click on Security.The Security screen appears in the right frame.Figure 25 System security level settings3 The following table describes the fields. Set the fields to the values that best fit your systemrequirements and that accommodate compatibility issues with interconnecting users orservices.!Security note: The default se ttings define a mid-level of security whichaccommodates Windows 95/98/Me operating systems. If you would like to set a higherlevel of security, ensure that all the computers that will be used for client access haveupgraded to at least Windows NT4, 2000 or XP.Table 4 Security settingsAttribute Value DescriptionAuthenticationCompatibilityLM&NTLM response -refuse NTLMv2 sessionsecurityLM & NTLM responseNTLM response onlyNTLMv2 response onlyNTLMv2 response only -refuse LMDefault: LM & NTLM responseThis setting determines the type of authentication protocol required byyour system during interactions with client applications.The default, LM & NTLM response, maintains compatibility with allWindows OS versions.Any of the other settings enforce a more secure authentication protocol,and will prevent access from computers running Windows 95/98/Me,unless you install the directory services client on the client computer.
