I have DC 2016 and Win10 v1909/20H and 2004
im doing hardening for Win10 policy however, some of policies are not configured on Security Options but patches are updated.
Domain member: Digitally encrypt or sign secure channel data (always)
Domain member: Digitally encrypt secure channel data (when possible)
Domain member: Digitally sign secure channel data (when possible)
Domain member: Disable machine account password changes
Network access: Restrict clients allowed to make remote calls to SAM ----- >what happened if configure these both server and client
Thanks